FR3004827A1 - METHOD FOR THE REMOTE USE OF A USB CHIP CARD READER ASSOCIATED WITH A PROFESSIONAL HEALTH CARD OR A PATIENT CARD WITH VITAL CARD AND ASSOCIATED SYSTEM. - Google Patents

Abstract

Method and system for remotely using a smart card USB reader through a network It implements at least one ORDMA master computer located at a distance from the reader on which is created a virtual USB reader corresponding to the one that one wants to read remotely and by at least one slave computer ORDES which actually has the USB reader of Smartcard. The network is interconnected on the network by a transit server SERT. The preferred field of application of the invention mainly covers all acts and exchanges by remote transmission related to medicine, surgery, pharmacy and medical assistance.

Description

Title: Method for the remote use of a USB smart card reader associated with a professional health card or a card 5 patient called Vitale card and the associated system. Field of the Invention: The invention relates to a method of using an external or internal IP network of a remote USB device to read a health professional's smart card or that of a health professional. a patient with a patient card called Vitale card is mainly in the field of telemedicine and medical assistance. Definitions: In order to better understand the invention, the following definitions of the words and phrases to be used hereinafter are set forth below. 20 USB smart card reader: Universal Serial Bus compliant device that reads information from a smart card. 25 IP network: an IP-compatible (Internet Protocol) internal or external or international local area network in version 4 or 6. Professional health card CPS: a smart card that uniquely identifies a health professional such as a doctor or a nurse. CVI Vital Card: or patient card is a smart card uniquely identifying a patient with a health professional to facilitate his administrative procedures. PS: a health professional such as a doctor or a nurse with a CPS 10 PT professional health card: a patient ie a person with a health card called a CVI Vital Card A professional health card reader LCPS: a USB compatible smart card reader associated with reading a professional CPS health card. LCVI vital card reader: a USB compatible smart card reader associated with the reading of a CVI vital card. LCPA Shared Card Reader: A reader that can serve both LCPS and LCVI. The corresponding virtual drives are referenced LCPSR and LCVIR. 25 ORDES Slave Computer: An electronic machine with IP connectivity and a USB port to which an electronic chip card reader is connected. The slave computer ORDES is always the one that shares its card reader.

ORDMA Master Computer: An electronic machine with IP connectivity that provides access to the smart card reader of the slave machine.

The ORDMA master computer is the one that controls at a given time a remote card reader called virtual drive. SERT transit server: A machine with IP connectivity with the ORDES slave computer and the ORMA master computer and 10 for interconnecting them. HCN (Host card reader name): The name of a smart card reader on a machine. It is HCN slave if it is the name on the slave machine, or HCN master if it is the name on the master machine. Host card reader port (HCP): The virtual port number associated with a card reader on a machine. It is HCP slave if it is the port on the slave machine, or HCP master if it is the port on the master machine. URB (Usb Request Block): USB low-level protocol for communicating with a USB device. 25 IP (Internet Protocol): standardized network protocol allowing the implementation of the Internet (RFC 791). Transmission Control Protocol (TCP): reliable, IETF-standard, connected-mode network protocol (RFC 793).

Transport Layer Security (TLS): Secure and secure network protocol in connected mode standardized by the IETF (RFC 2246, RFC 4346, RFC 5246).

DMP (Personal Medical File): personal medical file of a PT patient who traces his diagnosis and care pathway to one or more professional actors of the health world.

The other terms of the figures will be explained at the time of the description of each figure. General problem and explanation of the problem solved by the invention: The CPS health professional cards use an encryption method for storing information to uniquely identify a professional PS actor in the field of health.

In order to read this information, a PIN (Personal Identification Number) must be provided, and a decryption algorithm is started. Each CPS card reading device is designed to be decrypted on the same physical location as the cardholder's location. For the CVI vital card, the data are not encrypted and are therefore accessible in clear by the LCVI card reader and can therefore be read by a current reader-computer couple. However, no system currently exists to remotely identify a PS health professional or a PT patient. In order to be able to charge a consultation or teleconsultation to a patient who comes to his office, a general practitioner PS must authenticate himself by placing his CPS card in an LCPS card reader and authenticate the PT patient by placing the vital card of that patient. in another drive. Both authentications must be valid so that the billing of the doctor's consultation or teleconsultation can be taken into account. In the same way, to access or create the personal DMP medical file of a PT patient, it is mandatory for the healthcare professional to authenticate with his CPS card and to authenticate his PT patient with the card. Vitale CVI of the latter and this on the same place to validate their agreement on the delivery of health professional PS. But, as will often be the case in the future if a doctor is in teleconsultation with a patient, by a LITELT teletransmission link, which includes for example a videoconferencing system, no means at present, allows the PS doctor to bill his PT patient or to access his DMP because he can not have access to his CVI vital card remotely. The invention aims to solve this problem and provides an innovative solution by allowing a PT patient to enter a remote consultation with a doctor and more generally PS health professional who stays in his office. Brief and general description of the invention: On a master computer equipped with a USB smart card reader and adapted software for reading the card, the method allows the creation on the master computer of a reader virtual USB smart card while the latter is remote from the slave computer that actually physically has a smart card reader. More specifically, the master computer computer access to the slave computer to extract the information on the smart card introduced into the remote drive of the slave computer used thereby creating a virtual USB smart card reader for the operation of the system for taking into account, managing and accounting for the act or service in the field of health. The network is interconnected on the network by a transit server. Each slave computer is connected to a USB smart card reader for reading a VITALE or CPS card.

Each card reader is made remotely accessible by a software method to a remote master computer, via a transit server which, among other things, makes it possible to manage the access rights between master computers and slave computers, while ensuring their interconnection.

List of Figures: (a) Figure I is a general schematic overview of the means and basic equipment. b) Figure 2 is the schematic plan of a system set in the case of a teleconsultation when the practitioner wishes to access the file of his patient. c) Figure 3 is the schematic plan of a system set in the case of a teleconsultation when the patient wishes to add additional data to his file. Usage scenarios: Before describing two possible scenarios of use, remember that the slave computer ORDES is always the one that shares its card reader while the master computer ORDMA is the one that controls at a given moment a reader of remote card. In the first example scenario, the doctor or more generally the health staff or practitioner PS must access the remote vital card of a patient teleconsultation. It has a card reader for reading its own CPS card. This LCPS practitioner card reader is not intended to be shared in this first scenario. The practitioner enters his CPS card into his card reader and requests teleconsultation from his patient to return his vital card to his remote card reader. At this time the practitioner (see Figure 2): 1. Accesses his local billing / patient tracking software, 2. Remotely takes control of the patient's vital card reader via a simplified interface. 3. validates in his software the access to his patient's file 30 via his CPS card and the vital card of his patient.

The diagram below operations. summarizes the succession of the principal Physician inserts his card CPS Network IP V List readers available in the patient Patient inserts his card VITALE can Doctor accesses for that in the file his patient in his software Doctor modifies the patient file Doctor accesses the card VITALE remotely Same scenario for its consultation, One practitioner accesses to use the DMP of an updated patient or its creation.

The second example of scenarios is a reverse scenario in which the patient side wishes to access and modify an associated compatible DMP medical record. The patient is preferably assisted on site by a health professional who does not have a CPS card. In this case, the patient (see FIG. 3): 1. asks the practitioner to enter his CPS card in his remote reader 2. takes control of the practitioner's remote CPS card reader 3. between his Vitale card in his local reader 4. accesses his / her compatible DMP medical file and adds, with the help of the health professional (nurse or other), information and documents such as an image or a medical report. The diagram below summarizes the succession of the main operations.

Patient inserts his card VITALE List readers available at the doctor Doctor inserts his card CPS Patient accesses the card CPS remote Patient accesses his medical file DMP compatible 10 Patient adds a document to his medical file Description of the invention: The method allows to remotely use a smart card reader and the information on the card read by this reader. Figures 1, 2 and 3 illustrate the components of the system and their grouping in the general case and then in two particular cases of application related to telemedicine. Figure 1 is the general plan of the system.

In this figure is represented an ORDMA master computer which communicates through a network RES by COMRES communications with at least one slave computer ORDES. The number N assigned to the last of the possible ORDES slave computers shows that they can be numerous. A SERT transit server manages, orders, controls, and connects the component parts of the system through COMRES network communications. At least one of the slave computers present on a HOP port, here is port 0, an LCPA shared card reader. ORDMA has the functionality named FONCORDMA according to which it provides access to the card reader of one of the slave computers. SERT has the function named FONCSERT according to which it assures, holds and checks the list of slave computers here from 1 to N, manages access rights, places ORDMA with ORDES 1 on port HOP 0. The figure 2 is the particular plan of the system in the case of a teleconsultation performed by a doctor PS on a remote patient PT 20 for example remained at home. The PT patient side is on the right and the PS doctor side is on the left in this figure. The master computer ORDMA is on the physician side PS and the slave computer ORDES is on the patient side PT. Both are connected by a LITELT teletransmission link with a teleconsultation means. ORDMA is equipped with a CPS card reader referenced LCPS and in operation presents a virtual LCVIR card reader. The slave computer of the patient ORDES is equipped with an LCVI vital card reader on the port HOP 0.

The teleconsultation is carried out as explained below. It begins with the preliminary phase of access by the health professional PS (doctor) to the patient's software. This phase is named ACLOPAT in Figure 2.

Figure 3 is a plan showing another application. This time, the PT patient side is to the left of the ORDMA master computer side and the PS health professional side to the right side of the slave ORDES computer equipped on the HCP 0 port of an LCPS card reader.

The two computers are interconnected by a telecommunication link LITELT teleconsultation means. ORDMA is equipped with the vital card reader LCVI and present in operation a virtual reader of CPS card of health professional PS named LCPSR. This last case corresponds to that of an access by the patient PT to his medical file DMP under the signature and the authentication of the health personnel PS for insertion, complement or any other modification or intervention on or in this one. More generally, the method implements one or more slave computers ORDES on each of which is connected a USB card reader and an ORDMA master computer accessing the slave computer ORDES through a transit server SERT to control a reader remote card equipping at least one of the slave computers ORDES.

On each ORDES slave computer, there is a hardware driver controlled by a client network application, called a slave application, which makes it possible to access, by the ORDMA master computer, the smart card reader of the ORDES computer. On the master computer ORDMA, there is a hardware driver 30 controlled by a client network application, called master application, which allows access to a remote smart card reader through a transit server SERT . On the SERT transit server, a server network application makes it possible to communicate with the client applications on the slave and master computers so as to connect them. The communication across the network between the different applications serves to set up several mechanisms. A first mechanism is a directory mechanism that allows the target machines to know the available slave machines. A second mechanism is a control mechanism that allows a master machine to exclusively control the smart card reader of a slave machine. Communication steps: Assume that an ORDMA master computer, a SERT transit server and a slave computer 20 ORDES equipped with a card reader associated with the virtual port number 0 are available. Each of the computers ORDMA master and slave ORDES communicates with the SERT transit server by implementing a client-server architecture. This communication takes place by means of a connected protocol such as TCP or TLS. Here are the steps that take place when the ORDMA computer wants to use the card reader of the slave computer ORDES through the SERT transit server.

Master Transit Slave ORDMA SERET ORDES 1 List Machines II> II Machine EI 1 Found E l <l <I Access EIII> 1 I Access OK I l <l <1 Access I 1 List readers E 1 List readers I> 1> II 1 List III 1 Lect- 1 (0,0) on EII <I -ers l <(0,0) 1 <I Active 0 on E 1 Active 0 I> 1> Driver 1 Active OK on E 1 l <I 'Active - 1 <1 Enable OK 1 <- II send URB E send URB> I> 1> Driver Pilot 1 response URB E 1 i <<II <1 response URB II send URB E send URB> 1> 1> 1 Driver Driver 1 URB callback E1 1 URB callback 1 1 - 1 <I <i <1 1 Disable 0 on E 1 Disable 0 I> 1> 1> 1 Disa- 'Disable OK on E 1 Disable OK 1 1-ctive I < I <1 Access farm E> 1 1 Farm Access OK I 1 Closes l <1 <Initially, the ORDMA application requests the SERT transit server to list all the available ORDES slave computers. In this case it indicates that ORES is available. ORDMA then decides to ask SERT to control the slave machine ORDES. The SERT transit server checks access rights and accepts ORDMA control on ORDES. From this step, the SERT transit server only serves as an intermediary between ORDMA and ORDES. ORDMA then asks ORDES to list all accessible card readers. ORDES responds that the card reader C is available on the virtual port HOP 0. Then ORDMA asks ORDES for the control of the port HOP 0 by activating it. The activation is then accepted by ORDES. Therefore, the pilot of the master machine ORDMA takes control and proceeds to the creation of URB block requests which are transmitted to the application of the master computer ORDMA which sends these URB requests to the slave computer ORDES by 1 < Via SERT. When the ORDES application receives these URB requests, it sends them to the generic driver of the operating system of the slave machine ORDES which then processes the requests.

As soon as the card reader provides a response, the latter is sent back from the slave machine's driver to the application of the latter in order to send it back to the master machine via the transit server SERT. This step is repeated as many times as the driver of the master machine ORDMA needs access to the card reader on the slave machine, or as soon as the master machine decides to cut control. Finally, the ORDMA master machine cuts control over HOP port 0 by disabling it. Once this request is accepted by ORDES, ORDMA closes the access to the ORDES machine by a request to the transit server SERT. The slave machine ORDES: 20 The slave machine ORDES is equipped with several software to allow the transit server SERT to access a card reader.

This composition is represented in a simplified manner hereinafter ORDES machine I connection with -> I slave application I <transit server Relay driver IUSB OS URB Interface '15 I USB 20 II Card reader 25 It mainly has software components and devices following: - a slave application that communicates through system calls with a driver to access a card reader. This application communicates with a transit server via a network connectivity over the IP protocol, - a driver relaying between the application and the system interface that provides access to the card reader, .une interface for submitting URB requests to the card reader. This interface is implemented and available by the operating system, - one or more USB card readers connected to the slave machine. The slave application on the host machine implements a directory of smart card readers available on the machine and offers the following features: 1. connect to a SERT transit server by specifying an identifiable slave computer name of unique way. 2. Associate a name and a virtual port number with each card reader present on the machine. The name HCN is not necessarily unique. However, the HCP port number is, in order to uniquely identify the reader. This association is available in the form of a smart card reader directory. 3. enable an HCP virtual port to enable remote control of the associated smart card reader. Since the local use of the reader is exclusive, it is no longer possible to use it locally. 4. disable an HCP virtual port to cut off its remote control. The reader is accessible again for local use. 5. Control a virtual port and therefore that of the card reader by the application. The control is only possible if the virtual port is enabled. This control implements a low level communication with the card reader according to the USB protocol using USB Request Block (URB) block requests. The slave application communicates with the transit server via a network protocol operating over the IP protocol (such as TCP or TLS). It is used to link the machine driver to a remote master application on the target machine. The slave application communicates with one or more USB drivers via system calls in order to use the four mentioned features. The SERT transit server: The SERT transit server is equipped with a server application that makes it possible to interconnect several slave applications with different master applications. This SERT transit server manages the access rights of the master appliances to the slave applications in addition to interconnecting the applications with each other. To do this, the SERT transit server offers the following 20 functions: 1. maintenance of a dynamic list, namely a list that can change over time, access rights to the slave machines. It indicates for each of the master servers the slave servers that can be controlled, 2. maintaining a dynamic list of activities, namely a list that can change over time. Indeed, although the list of access rights is not exclusive, at a given moment, access to a card reader is exclusive to him. Thus, as soon as a master application controls a slave application, no other master application can control the slave application. To do this, the SERT server maintains a dynamic list of slave computers that are controlled in order to refuse access for the time of their control, 3. proposal of a dynamic list, namely a list that can change during the time, machines available to allow a master server to know the slave machines it can control. This list is the intersection of the list of access rights with the complement of the activity list, 4. control of an available slave machine. Once checked, the following functionalities are available: a) propose a list of card readers available on a slave machine in the form of a list of HCN names and HCP ports. Indeed, once the master application authorized to control a slave application the transit server uses the directory service of the slave application to propose a list of smart card readers available on the host machine, b) activate an HCP port of an available slave machine, c) control an HCP port through low level communication with the USB card reader using URBs, d) disable an HCP port on a machine controlled slave, e) no longer control a slave machine. If ports are still active, they have been disabled in order to allow remote control of the card readers at a later time. The ORDMA master machine: The ORDMA master machine is equipped with several software components to allow communication with the transit server. SERT. Its general composition is shown schematically below. 10 I ORDMA machine I connection with -> I master application I <transit server 15 I CPS cryptolibs / GALSS I IUSB OS URB Interface '20 -> 1 Virtual driver 25 It mainly has: - a master application that communicates via the system call bias with a driver to virtualize a card reader. This application communicates with a transit server via a network connectivity over the IP protocol, a virtual driver which emulates a card reader and which retransmits via the slave application the read and write requests. which are submitted to it, - an interface for submitting URB requests.

This interface is implemented and available by the operating system, - a USB application interface, namely a high-level USB driver that can decrypt the contents of a CPS card or a CVI Vitale card.

The ORDMA master machine has a master application that communicates with a driver to virtualize a USB controller. The application communicates via system calls with the virtualization driver and proposes the following 15 functionalities: 1. connection to a SERT transit server by indicating a uniquely identifiable master name, 2. proposal of a list 3. control of a given slave machine to access the following functions: a) provide a list of controllable card readers, b) enable a HOP port of an available slave machine, c) control an HCP port through low-level communication with the card reader following the USB protocol using URBs, d) disable a HOP port of a controlled slave machine, e) no longer control a slave machine. The still active ports are disabled for remote remote control of the card readers. ter) I CTP130009250 Rosheim, 12 02 2014 4 II 1011 HI II 13 FE January 20111 IN PI Patent Office 15 rue des Minimes SC 50001 92677 COURBEVOIE Cedex Invention patent application No. 13 00930 Notifications of 18 December 2013 Mrs , Sir, As the representative of the two applicants and acting on their behalf, please find enclosed a copy of the new amended claims following your notifications of 18 December 2014. Please accept, Madam, Sir, the expression of our distinguished sentiments . Christiane Cinqualbre Manager Hopi Company 0685307299 HOPI Sarl - 18 rue du General de Gaulle - F - 67560 Rosheim Postal address: HOPI Sarl - PO Box 10090 - F - 67213 Obernai Cedex www.hopi.fr SARL with capital of 310000E, RCS Saverne B 480 794 635 APE Code 6201Z INTRA VAT FR28480794635 00015

Claims (11)

REVENDICATIONS1. Method for remotely creating and using an internal or external IP network of at least one USB smart card reader of a PT patient from a USB reader of the CPS smart card of a professional PS, in which the health professional PS and the patient PT each have a computer, one ORDMA master and the other slave ORDES each having a smart card reader, these computers being connected by a remote transmission network characterized in that the ORDMA master computer is created with a virtual smart card reader, and in that the ORDMA master computer has computer access to the slave computer ORDES in order to extract it the information present on the smart card introduced in its reader, creating at its level a virtual USB smart card reader for the operation of the system for taking into account, managing and accounting the act or the service in the field of health and in that the teletransmission network includes a transit server SERT for remotely managing the access rights between ORDMA master computers and ORDES slaves while ensuring their interconnection and that the health professional PS enters his CPS card into his CPS card reader and asks his patient PT to teleconsult his health card smart card in his card reader, then proceeds as follows: - he accesses his local software billing / tracking, - he remotely controls the reader of the PT patient's health card via a simplified interface, - he validates in his software the access to the patient's PT file via his CPS card and the patient's card PT, - it modifies the medical record of the PT patient. 2. Method according to claim 1, characterized in that the network comprises a personal medical file DMP specific to the patient PT and the patient PT adds information or documents in his personal medical file DMP as follows: - he asks the PS health staff to insert his CPS card - he takes control of the remote CPS card reader - he enters his health card into his local card reader - he accesses his personal DMP or compatible medical file and adds information or documents such as an image or a medical report according to the following diagram: the patient inserts his health card the doctor inserts his professional card CPS in his reader the patient accesses remotely to the CPS card of the doctor the patient accesses his medical file DMP staff the patient adds a document to his personal DMP medical record. 3. Method according to claim 1 characterized in that an ORDMA master computer which communicates through a network RES by computer communications with at least one or N slave computer (s) ORDES, a transit server SERT manages, orders, controls, and interconnects the component parts of the system by COMRES network communications, at least one of the slave computers having on a HOP port, e.g. port 0, an LCPA shared card reader and that ORDMA has the feature named FONCORDMA that provides access to the card reader of one of the slave computers, and SERT has the feature named FONCSERT that ensures, holds and checks the list of slave computers from 1 to N, provides management access rights, and puts ORDMA in communication with the first ORDES computer on its port HOP O. 4. Method according to claim 1 characterized in that in the case of a teleconsultation performed by a health professional PS on a distant PT patient for example remained at home, the ORDMA master computer is that of PS health personnel and the slave computer ORDES is that of the patient PT, the two computers being connected by a telecommunication link LITELT of a teleconsultation means and ORDMA is equipped with a CPS card reader of health personnel PS referenced LCPS and one uses his virtual reader of patient card LCVIR created and in that the slave computer of the patient ORDES equipped with a vital card reader LCVI on its port HOP 0 is put in relation with the master computer ORDIMA by a preliminary phase of access by the health professional PS to the patient's software for a teleconsultation. 5. Method according to claim 1 characterized in that the slave computer ORDES equipped on its port HOP 0 of a card reader LCPS, the two computers ORDMA and ORDES being interconnected by a remote transmission link LITELT means teleconsultation, ORDMA is equipped with the LCVI reader of the patient's health card and presents in operation a virtual reader of CPS card of health professional PS named LCPSR, this last case corresponds to that of an access by the patient PT to his file DMP Medical under the signature and authentication of PS Health Personnel for insertion, completion or any other modification or intervention on or in it. 6. Method according to claim 1 characterized in that it implements one or more slave computers ORDES on each of which is connected a USB card reader and an ORDMA master computer accessing the slave computer ORDES through a SERT transit server for controlling a remote card reader equipping at least one of the slave computers ORDES and in that on each slave computer ORDES, there is a hardware driver controlled by a client network application, called slave application, which allows access, by the ORDMA master computer, to the smart card reader of the ORDES computer and in that on the ORDMA master computer, there is a hardware driver controlled by a client network application, said application master, which allows access to a remote smart card reader through a SERT transit server and that the SERT transit server uses a server network application which makes it possible to communicate with the client applications on the slave and master computers in order to connect them and that the communication across the network between the different applications serves to set up several mechanisms:. a first mechanism that is a directory mechanism that allows target computers to know which slave computers are available,. a second mechanism that is a control mechanism that allows a master computer to exclusively control the smart card reader of a slave computer. 7.Procédé according to claim 1 characterized in that one has an ORDMA master computer, a SERT transit server and a slave computer ORDES equipped with card reader associated with the virtual port number 0, each ORDMA master and slave computers ORDES communicates with the SERT transit server by implementing a client-server architecture and this communication is performed by means of a connected protocol such as TOP or TLS, the steps that take place when the ORDMA computer must use the card reader of the ORDES slave computer while passing through the SERT transit server are the following: - at first the ORDMA application requests the SERT transit server to list all ORDES slave computers available and indicates that ORES is available. - ORDMA establishes a request to the SERT transit server for the control of the slave computer ORDES, - the transit server SERT checks the access rights and accepts the ORDMA control on ORDES, - from this step, the server SERT is only used as an intermediary between ORDMA and ORDES, - ORDMA requests ORDES to list all accessible card readers, ORDES responds that the card reader is available on virtual port HOP 0, - then ORDMA establishes a request to ORDES for the control of the port HOP 0 by activating it which is then accepted by ORDES. - Then, the driver of the ORDMA master computer takes control and proceeds to the creation of URB block requests which are transmitted to the application of the ORDMA master computer that sends these URB requests to the slave computer ORDES by the intermediary of SERT, - when the ORDES application receives these URB requests, it sends them to the generic driver of the operating system of the slave computer ORDES which then processes the requests, - as soon as the card reader provides an answer , it is reassembled from the driver of the slave computer to the application of the latter to return it to the master computer via the transit server SERT, - this step is repeated as many times as the ORDMA master computer driver needs access to the card reader on the slave computer, or as soon as the master computer decides to cut control, - the ORDMA master computer cuts control over HOP port 0 by the off Once this request has been accepted by ORDES, ORDMA closes the access to the ORDES computer by a request to the SERT transit server. 8. System used to implement the method according to any one of the preceding claims for the remote use of at least one USB smart card reader of a health card of a patient PT, a CPS card smart card USB reader from a PS healthcare professional, an ORDMA master computer and a slave computer ORDES each provided with a USB card reader, computers communicating remotely by a link of remote transmission characterized in that the system consisting of at least one ORDMA master computer and at least one slave computer ORDES each having a smart card reader, the slave computer ORDES is always the one that shares its reader while the master computer ORDMA is the one that controls at a given time a remote card reader and in that the ORDMA master computer or computers and at least one slave computer ORDES are interconnected by a network RE S through a SERT transit server which manages, orders, controls and interconnects the components of the system by COMBRES network communications and in that the server SERT transit is equipped with a server application for interconnecting several application slaves with different master applications and manages the access rights of the master applications to the slave applications in addition to interconnecting the applications with each other and in that the SERT transit server has the following functionalities: - maintaining a dynamic list, namely a list that can change over time, access rights to slave computers and indicates each of the master and slave computers that can be controlled, - maintaining a dynamic list of activity, namely a list that can change over time, access to a card reader is exclusive and as soon as a master application controls a slave application, no other master application can not control the slave application, the SERT server maintains a dynamic list of slave computers that are controlled in order to refuse access for the time of their control, - proposal of a dynamic list, namely a list which can change over time, computers available to allow a master server to know which slave computers it can control, this list being the intersection of the list of access rights with the complement of the list of activity, - control of a slave computer available and once controlled, accesses the following tasks and functionalities: a) propose a list of card readers available on a slave computer in the form of a list of HCN names and ports HCP, once the master application authorized to control a slave application, the transit server uses the directory service of the slave application to propose a list of the Chip card readers available on the host computer, b) enable a HOP port of an available slave computer, c) control a HOP port through low level communication with the card reader according to the USB protocol. using URBs, d) disable a HOP port of a controlled slave computer, e) no longer control a slave computer if ports are still active, and disable them to allow remote control of card readers at a later time 9. System according to claim 8 characterized in that the slave computer ORDES is equipped with several software to allow the transit server SERT to access a card reader and in that it mainly has software components and following devices: - a slave application that communicates through system calls with a driver to access a card reader, this application communicates with a transit server through a network connectivity over the IP protocol, a driver relaying between the application and the system interface that provides access to the card reader, an interface for submitting URB requests to the card reader, this interface being implemented and available by the system. operation, - one or more USB card readers connected to the slave computer, and in that the slave application on the host computer implements a directory of the card readers messages available on the computer and offers the following features: - connect to a SERT transit server by specifying a uniquely identifiable slave computer name, - associate a name and a virtual port number to each card reader present on the computer, the HCP port number being unique in order to uniquely identify the reader, this association being available in the form of a smart card reader directory, - activate a virtual HOP port to enable the remote control of the associated smart card reader, the local use of the reader being exclusive, it is then no longer possible to use it locally, - disable a virtual port HOP to cut off its remote control by making the reader again accessible for local use, - control a virtual port and therefore that of the card reader by the application, the control being possible only if the virtual port is activated and this control puts in place implement a low-level USB communication with the card reader according to the USB protocol using URB block requests, and in that the slave application communicates with the transit server via a network protocol operating through the protocol IP such as one of the TOP or TLS protocols, to enable the connection between the computer driver and a remote master application on the target computer, and in that the slave application communicates with one or several USB drivers via system calls to make use of the four features listed above. 10. System according to claim 8 or 9 characterized in that the ORDMA master computer is provided with several software components to allow communication with the SERT transit server, and in that it has: - a master application that communicates through system calls with a driver to virtualize a card reader, this application communicates with a transit server through a network connectivity over the IP protocol, a virtual driver that emulates a card reader and which retransmits via the slave application read and write requests that are submitted to it, - an interface for submitting URB requests, this interface being implemented and available by the operating system, a USB application interface, namely a USB high-level driver that makes it possible to decrypt the contents of a CPS card or a CVI Vitale card, and that the ORDMA master computer has an application a master that communicates with a driver to virtualize a USB controller, and that the application communicates via system calls with the virtualization driver and offers the following features: - connection to a SERT transit server in Indicating a uniquely identifiable master name, - Proposing a list of slave computers available for testing, - Controlling a given slave computer to access the following functions: a) Providing a list of controllable card readers, b) Enabling a HOP port of an available slave computer, c) control a HOP port through low-level communication with the card reader following the USB protocol using URBs, d) disable a HOP port of a computer controlled slave; e) no longer control a slave computer, the still active ports being disabled in order to allow subsequent remote control of the card readers. 11. System according to claim 8 or 9 or 10 characterized by an ORDMA master computer and a network RES and at least one or N slave computer (s) ORDES with which ORDMA communicates by COMRES communications, the system also comprising a SERT transit server which manages, orders, controls, and interconnects the component parts of the system by COMRES network communications, and in that at least one of the slave computers has on its rank 0 HOP port, a reader of LCPA shared card and in that ORDMA has the functionality named FONCORDMA according to which it provides access to the card reader of one of the slave computers, and in that the SERT transit server has the functionality named FONCSERT according to which it ensures , holds and checks the list of slave computers from 1 to N, it manages the access rights, and communicates ORDMA with ORDES on port HOP 0.