En-tête Afpc-cartes.com : Votre plug-in flash n'est pas à jour, veuillez télécharger la dernière version ici

YOUAREHERE : Organisation : specific committees > The security committee
French (Fr)English (United Kingdom)

The security committee

Following a one-year major work programme, the AFPC is publishing its security reference material for the personalisation of microprocessor cards. This initiative represents a major step by the Association which is intended to show the public and private sectors that it has a strong, solid manufacturing base while creating a relationship of trust on the subject of security.

The AFPC’s know-how is based on 10-15 years of experience of both security at an organisational level and product security. Regarding the personalisation of cards, as none of the existing private reference materials covers the whole problem in all areas (physical, logical and organisational security), the AFPC has developed one..

In fact, this reference document, which has been validated by all the field’s major players as well as by the certification committee of the LSTI [La Sécurité des Technologies de l’Information = the IT security organisation] certifying body, combines the different sets of problems deriving from the organisational or management part of security, from the physical security part, from information systems security, production management and key management. This integrated reference document must respond to all the sets of problems faced by the principals.

It is hoped that this initiative will avoid the creation of multiple reference documents by each ministry on the new application areas : the Ministry of Health for the vitale 2 card, the Ministry of the Interior for identity cards etc.
secure smart cards

The requirement for certification of manufacturers regarding this reference document is already envisaged within the framework of public or private tenders. This certification reference document will be proposed to the minister for industry for publication in the official journal within the framework of compliance certification.

The reference document was developed at the request of LSTI, by the AFPC’s personalisation reference committee, and the following public authorities: DCSSI, [Direction Centrale de la Sécurité des Systèmes d’information = Central Direction of Information Systems Security], ADAE [Agence pour le Développement de l'Administration Electronique = Agency for the Development of Electronic Administration], the Economic Interest Group [GIE=groupement d’intérêt économique] SESAME Vitale and the Exense company.