To make sure your software complies with the guidelines required to implement INS into software, several documents are available:

Our partner, the GIE Sesam-Vitale, is here to provide you with support and answer your questions about your software project, how to integrate INSi, or solve any potential technical setbacks. 

The helpdesk is available by phone at +33 (0)2 43 57 42 88, from 9am to 12noon, and from 2pm to 6pm, Monday to Friday. You may also send an email to centre-de-service@sesam-vitale.fr.

In order to make the check lists more transparent and reduce the risk of seeing your Ségur application denied, we have published a document listing common mistakes, which is available below:

It is compulsory to have an individual CPx-type card to log in to the INSi teleservice. Three types of cards are supported: CPS, CPE, CPF. 

CPx cards issued before December 2020 have a contactless chip that prevents from overwriting its code.

The new CPS R3V3 cards that are now in circulation have a Mifare Desfire chip. These cards can stock crypto-secret keys that work with the Mifare Desfire protocol.

All the information about this feature is available in the Manual to deploy contactless CPx cards (available to download below). One must be cautious about the data inserted in the chip’s writing code.

We strongly advise against using this section of the chip to stock access rights. The ANS recommends you to use the ANSSI guidelines on using a "transparent" reader in connected mode. This does not involve a cryptographic protocol during a badge authentication – only the UTL (logic treatment unit) takes part in the cryptographic protocol.

ANSSI advises against setting up a “smart” badge allowing a double authentication breaking from the UTL.

All the recommendations on securing systems for physical access and video projection are available in the document below, "Recommendations on securing systems for physical and video projection access".

The MSSanté network system creates a Secure Space, which is managed by the ANS. This Secure Space includes messaging service providers under contract with the Agency (health structures, operators, administrators, etc.) in order to secure globally the electronic messaging services proposed to health professionals. There are many messaging services integrated to the Secure Space, which protects the sharing of health data.

Upgrading your products allows you to offer your customers a solution that complies with current regulations. Failure to meet this requirement will have several impacts: 

• Your customers will not incorporate the INS into their software, which will entail possible penalties with regard to several systems (Ségur Wave 1, HOPEN, portal listing in Mon Espace Santé, etc.) ; 

• Your customers will not be in compliance with the law. They will therefore be responsible for any errors in the identification of their patients and users ; 

• Sharing health data by your customers will be more time consuming ; 

• The identity used by your customers may not be the right one, for instance if a patient uses their married name or if the patient is a child registered under their parent’s social security number.

MSSanté is a secure messaging system that enables authorised professional to share sensitive patient data in a safe manner, in the context of the patient’s care monitoring. As of now, billing and invoicing data are not included in this perimeter.

This midware allows the interfacing between computer applications, such as the Vivoptim doctors portal and the CPS card.

MSSanté is an umbrella term which refers to the network of secure messaging services dedicated to healthcare, integrated in a Secure Space. Mailiz is one of the messaging services that is part of this Secure Space, which is managed by the ANS and proposed to health professionals by the Ordres de Santé (Health Governing Bodies).