CPS Technical Framework

Guidelines to implement health professional authentication

What is CPS ?

The health professional card, or CPS card, is a digital ID for healthcare workers. It attests of its holder’s qualifications and identity. The card is issued by the ANS, which is the certifying authority designated for the health sector.

The technical framework is proposed for development purposes, with the aim to boost new digital solutions that implement the security functionalities of the CPS card.

Regardless of the exploitation system used (Windows, MacOS, Linux), the technical framework provides you with guidelines to:

  • Program the CPS security services APIs;
  • Integrate the CPS card management logic on a desktop;
  • Understand the impact of CPS card ergonomics on a desktop;
  • Access CPS directories, to obtain public key certificates and revocation lists (CRL).

CPS in 1 click

Discover and use

The CPS card contains the following information about its holder:

  • Identity
  • Professional qualifications
  • Practice activities
  • Digital certificates that guarantee the authenticity of the information provided

Learn More about the CPS3 Card (in French)

CPS in numbers

1,556,950 CPx-type cards are currently active

830,023 active CPS cards

48,577 CPF (Training Personnel Card) are currently active

How to order CPS test cards

Step 1: Browse the catalogue of test products

Commercial Catalogue of Products & Services (xls - 157 KB)

Step 2: Return the complete order form

Note: In part 3.1, “Test CPS usage”, describe the uses intended for your project and the test cards.

Download Form F414: Ordering Digital Identification Means (in French)

Choose the right product for your operating system

Win 10 : Minidriver CPS 

The Minidriver is the latest generation of pilots for Microsoft, in particular for chip card products.

It allows the use of two features of the CPS3 card: the contact feature and the contactless feature (conform to the IAS-ECC standard).

Warning: Cryptolib CPS is required to be installed prior to using the MiniDriverCPS in order to insure compatibility.

Read more about the MiniDriverCPS

Use the CPS Gestion app to use the card in complement to the MiniDriver

Download the CPS Gestion app on the Microsoft Store

Mac : Token driver

Token driver is installed at the same time as the CPS Gestion app.

Download the CPS Gestion app on the Apple Store

Linux : Cryptolib

There is no driver for Linux, but you can deploy Cryptolib to use it.

CPS Cryptolib is a software component to connect CPS cards with digital apps meant for the management of health practices and pharmacies.

Cryptolib is necessary to exploit all the possibilities offered by the CPS card, such as electronic signature, contactless forms and health insurance authentication. Cryptolib is set up on web browser in order to allow access to the DMP portal. It must be installed on your computer to let you use CPS cards.

Read more about Cryptolib (in French)

Log in to your account to access this content

If you are using invoicing systems and/or health insurance remote services, you may only need to roll out Cryptolib.

Useful documentation

Installation guide and usage of MiniDriver CPS v2.1.0 (in French) (pdf - 2.46 MB)

Cryptolib CPS v5 Support – CPS2ter to CPS3 Migration impacts (v1.2.10) (in French) (pdf - 3.28 MB)

CPS3 Card – Mail exchanges v1 (in French) (pdf - 1.09 MB)

Should you wish to have more information about test development products and their usages, read about the technical framework for test products:

Development products: Technical framework and test products

Videos

Présentation de DiagCPS

HIT 2017 - Atelier : Authentification par CPS

Configuration du dépôt RPM de la CryptolibCPS

Watch all the videos about CPS and the Technical Framework

Frequently Asked Questions

The ANS answers the most common questions about the CPS card and framework

Read the FAQ about the CPS card and framework (in French)

[ Date de mise à jour : 20 May. 2023 ]

CPx cards issued before December 2020 have a contactless chip that prevents from overwriting its code.

The new CPS R3V3 cards that are now in circulation have a Mifare Desfire chip. These cards can stock crypto-secret keys that work with the Mifare Desfire protocol.

All the information about this feature is available in the Manual to deploy contactless CPx cards (available to download below). One must be cautious about the data inserted in the chip’s writing code.

We strongly advise against using this section of the chip to stock access rights. The ANS recommends you to use the ANSSI guidelines on using a "transparent" reader in connected mode. This does not involve a cryptographic protocol during a badge authentication – only the UTL (logic treatment unit) takes part in the cryptographic protocol.

ANSSI advises against setting up a “smart” badge allowing a double authentication breaking from the UTL.

All the recommendations on securing systems for physical access and video projection are available in the document below, "Recommendations on securing systems for physical and video projection access".

Operational manual to use the contactless feature on CPx cards v3.3.0 (in French) (pdf - 3.47 MB)

Recommandations sur la sécurisation des systèmes de contrôle d’accès physique et de vidéoprotection (pdf - 4.53 MB)

Cette réponse vous a-t-elle été utile ?

[ Date de mise à jour : 20 May. 2023 ]

This midware allows the interfacing between computer applications, such as the Vivoptim doctors portal and the CPS card.

Cette réponse vous a-t-elle été utile ?

[ Date de mise à jour : 20 May. 2023 ]

It is compulsory to have an individual CPx-type card to log in to the INSi teleservice. Three types of cards are supported: CPS, CPE, CPF. 

Read more about the INS

Cette réponse vous a-t-elle été utile ?

[ Date de mise à jour : 20 May. 2023 ]

Watch our video about the activation and usage of the e-CPS card:

Cette réponse vous a-t-elle été utile ?

Discover related services

Was this page useful to you?

The information you provide in this questionnaire will be saved by the ANS into a digital database in order to optimise our website and improve our services.

The information saved is only to be used by the ANS and is only accessible to its services, its staff, and third-party providers authorised to consult it.

According to the regulation applicable in terms of personal data protection, you have the right to access, modify and erase your data. To do so, you may contact our Data Protection administrator, following the conditions set out in the page Personal Data Protection Policy on the ANS website.