Compliance / ANSSI
ANSSI Cryptography Compliance (RGS B1)
The ANSSI channel carries 9 rules curated from RGS Annexe B1 v2.0, the Référentiel Général de Sécurité's cryptographic annex maintained by France's national cybersecurity agency. Rules are tagged against ANSSI-RGS-B and NIS2; the France overlay adds critical-infrastructure (OIV) scope on top.
What RGS B1 sets
RGS Annexe B1 is the French reference for approved cryptographic mechanisms: key-size floors, approved hash and signature mechanisms, and validity horizons. It is the yardstick French administrations and their suppliers are assessed against, and like BSI it feeds the NIS2 state-of-the-art expectation for EU operators.
The Korthex ANSSI channel
9 hand-curated rules from RGS Annexe B1 v2.0, re-checked on the 24-hour cycle and shipped as signed updates. ANSSI sits directly after NIST and BSI in the priority order; findings graded by an ANSSI rule carry the ANSSI-RGS-B and NIS2 framework tags into the report and CBOM.
French enterprises typically activate the ANSSI channel plus the France jurisdiction overlay, which layers OIV critical-infrastructure scope on top of the baseline.
Frequently asked questions
What is the difference between the ANSSI channel and the France overlay?
The ANSSI channel grades algorithms against RGS B1 for everyone who activates it. The France overlay adds jurisdiction-specific rules for French critical infrastructure (OIV) on top; it assumes the ANSSI channel underneath.
Does ANSSI grading help with NIS2?
Yes. ANSSI rules carry the NIS2 framework tag alongside BSI, so EU operators get directive-ready evidence from either or both.
How current is the RGS mapping?
The channel is curated from RGS Annexe B1 v2.0 and re-checked on the 24-hour update cycle like every other source, with changes arriving as signed patches.