CPS Technical Framework

Guidelines to implement health professional authentication

What is CPS ?

The health professional card, or CPS card, is a digital ID for healthcare workers. It attests of its holder’s qualifications and identity. The card is issued by the ANS, which is the certifying authority designated for the health sector.

The technical framework is proposed for development purposes, with the aim to boost new digital solutions that implement the security functionalities of the CPS card.

Regardless of the exploitation system used (Windows, MacOS, Linux), the technical framework provides you with guidelines to:

  • Program the CPS security services APIs;
  • Integrate the CPS card management logic on a desktop;
  • Understand the impact of CPS card ergonomics on a desktop;
  • Access CPS directories, to obtain public key certificates and revocation lists (CRL).

Discover and use

The CPS card contains the following information about its holder:

  • Identity
  • Professional qualifications
  • Practice activities
  • Digital certificates that guarantee the authenticity of the information provided

CPS in numbers

1,556,950 CPx-type cards are currently active

830,023 active CPS cards

48,577 CPF (Training Personnel Card) are currently active

How to order CPS test cards

Step 1: Browse the catalogue of test products

Step 2: Return the complete order form

Note: In part 3.1, “Test CPS usage”, describe the uses intended for your project and the test cards.

Choose the right product for your operating system

Win 10 : Minidriver CPS 

The Minidriver is the latest generation of pilots for Microsoft, in particular for chip card products.

It allows the use of two features of the CPS3 card: the contact feature and the contactless feature (conform to the IAS-ECC standard).

Warning: Cryptolib CPS is required to be installed prior to using the MiniDriverCPS in order to insure compatibility.

Mac : Token driver

Token driver is installed at the same time as the CPS Gestion app.

Linux : Cryptolib

There is no driver for Linux, but you can deploy Cryptolib to use it.

CPS Cryptolib is a software component to connect CPS cards with digital apps meant for the management of health practices and pharmacies.

Cryptolib is necessary to exploit all the possibilities offered by the CPS card, such as electronic signature, contactless forms and health insurance authentication. Cryptolib is set up on web browser in order to allow access to the DMP portal. It must be installed on your computer to let you use CPS cards.

Videos

Présentation de DiagCPS

HIT 2017 - Atelier : Authentification par CPS

Configuration du dépôt RPM de la CryptolibCPS

Frequently Asked Questions

The ANS answers the most common questions about the CPS card and framework

[ Date de mise à jour : 20 May. 2023 ]

CPx cards issued before December 2020 have a contactless chip that prevents from overwriting its code.

The new CPS R3V3 cards that are now in circulation have a Mifare Desfire chip. These cards can stock crypto-secret keys that work with the Mifare Desfire protocol.

All the information about this feature is available in the Manual to deploy contactless CPx cards (available to download below). One must be cautious about the data inserted in the chip’s writing code.

We strongly advise against using this section of the chip to stock access rights. The ANS recommends you to use the ANSSI guidelines on using a "transparent" reader in connected mode. This does not involve a cryptographic protocol during a badge authentication – only the UTL (logic treatment unit) takes part in the cryptographic protocol.

ANSSI advises against setting up a “smart” badge allowing a double authentication breaking from the UTL.

All the recommendations on securing systems for physical access and video projection are available in the document below, "Recommendations on securing systems for physical and video projection access".


Cette réponse vous a-t-elle été utile ?

[ Date de mise à jour : 20 May. 2023 ]

This midware allows the interfacing between computer applications, such as the Vivoptim doctors portal and the CPS card.

Cette réponse vous a-t-elle été utile ?

[ Date de mise à jour : 20 May. 2023 ]

It is compulsory to have an individual CPx-type card to log in to the INSi teleservice. Three types of cards are supported: CPS, CPE, CPF. 

Cette réponse vous a-t-elle été utile ?

[ Date de mise à jour : 20 May. 2023 ]

Watch our video about the activation and usage of the e-CPS card:

Cette réponse vous a-t-elle été utile ?

Was this page useful to you?

The information you provide in this questionnaire will be saved by the ANS into a digital database in order to optimise our website and improve our services.

The information saved is only to be used by the ANS and is only accessible to its services, its staff, and third-party providers authorised to consult it.

According to the regulation applicable in terms of personal data protection, you have the right to access, modify and erase your data. To do so, you may contact our Data Protection administrator, following the conditions set out in the page Personal Data Protection Policy on the ANS website.