CH707488B1 - System and procedure for digital telematic operations. - Google Patents

Abstract

The present invention relates to a system for carrying out encrypted telematic digital operations comprising a user article, comprising data relating to a user identification code associated with the user's biometric data, an equipment (M) for the telematic communication process, comprising a computerized information management software and means (2) for biometric detection of the user and means (1) for reading the user's user article, and a remote server, operationally connected to the equipment (M) to confirm the identification of the user and for carrying out digital telematic operations, in which the biometric detection means (2) are able to uniquely identify the user's biometric data, in which the article reading means (1) user are able to identify the data of the user identification code, in which the telematic information management software is able to send the biometric data of the user and the data of the user identification code to the remote server, where the remote server is able to identify the user by comparing the biometric data of the user received with the user identification code received and to enable the equipment ( M) if the user is correctly identified by sending an acknowledgment confirmation, and in which the user article includes the data relating to the user's identification code associated with the user's biometric data in encrypted mode.

Description

[0001] The present invention relates to a system comprising an electronic-mechanical equipment (commercial name "TOPAS-BIOSIC") suitable for carrying out digital telematic operations, in particular financial transactions, certified electronic mail, document transmission, up- load and down-load and other various electronic operations on the network, with user identification through their biometric data in association with a user item, (magnetic card or built-in electronic micro-circuit, secure smart card, chip, chip, flash- disk, electronic key or similar means, in any case with integrated software capable of generating confirmation codes or tokens) in connection with the database (remote server).

[0002] Said remote user and server article succeeding through the apparatus of the invention by means of its process software integrated thereto to exchange reciprocal recognition and confirmation codes capable of carrying out encrypted transactions which are completely secure but opaque to the apparatus itself.

[0003] The equipment practically creates an online virtual bank that is totally secure in the exclusive identification of the person entitled, but without identification or trace on the equipment itself or on the terminals or attached machines or accessories, thus making any transaction opaque to third parties excluding the account provider server and the user.

[0004] The individual technical components of the devices of the present apparatus are already basically known, included in the prior art even if they take inspiration from the latest findings of the State of the Art, the actuality and novelty of the present invention, however, residing in the intelligent and original assembly and in the particular configuration of the same components, in their innovative and ergonomic design, in the use of the equipment itself in combination for its smart use with an integrated intelligent software.

[0005] Thanks to a clean and functional design it is capable of being integrated in any context.

DESCRIPTION OF THE PROBLEM, OF THE TECHNICAL SOLUTION OFFERED BY THE INVENTION AND BENEFITS WITH RESPECT TO THE STATUS OF THE TECHNIQUE.

[0006] The existing money laundering rules require that the legitimacy of any financial transaction be checked. The banking system already submits every banking operation, carried out through its own structures, to a system of controls relating to said legal issue.

[0007] The system comprising the apparatus described here which constitutes the object of the present invention allows various financial operations to be carried out and it is therefore essential to check that the user fulfills the requirements set by FINMA (Federal Supervisory Authority on financial markets) in the context of anti-money laundering control.

[0008] In fact, those who can use the equipment are subjected to prior checking by authorized third parties (for example notaries, lawyers registered with the control bodies on financial intermediaries, banks, etc.) to obtain certifications and operational means for the purpose. .

[0009] The first step in using the equipment therefore consists in the issue of an identification card by accredited structures. The data contained in this card cannot be changed.

[0010] The code contained in said card and attributed to the user's fingerprint is 128 bit encrypted. The identification takes place by checking the fingerprint and the matched card by means of a software application stored remotely which cannot be downloaded to a remote server (i.e. not inserted or registered in the operating system of the equipment of the present invention).

[0011] The system allows you to customize (once individualized) the user authorizations. The various authorizations are therefore not unique for all users.

[0012] Also for access to the user's e-mail, the aforementioned control gives a degree of security far superior to the simple password for remote access from the various external stations (hotels, internet stations, third party devices connected to the network, websites).

[0013] The system also allows you to credit (authenticate), with a significantly higher degree of security than the systems currently in use, your e-mail sent or to certify the receipt of that sent by third parties to the user, through biometric control the appliance, making it even more secure than the electronic signature check.

[0014] All of this is now made possible by the present invention through the Integration Modes commercially called "TOPAS" and "BIOSIC" described below.

ADVANTAGES and TECHNICAL and PROCEDURAL INNOVATION

[0015] A. The basic elements of the equipment with system software commercially called "TOPAS" are: <tb> 1. <SEP> allow the user, once registered with a subscriber identity form or subscriber identification form, commonly called SIM CARD, to be able to carry out all future transactions (financial or non-financial) which it will carry out with the apparatus of the present invention without making use of the usual recognition requests of traditional methods (telephone call to a hot line, recognition phrases, passwords, etc., for example), but only by handing the appropriate device user article and confirming access by fingerprint; <tb> 2. <SEP> at the level of the equipment itself, the operations are completely anonymous (therefore, it is not the equipment that contains the software with sensitive and user and user recognition data), but only the software integrated telematic information management between user identification and remote server account; <tb> 3. <SEP> at the level of the database (server), the trace of access and identification and of each financial operation remains; this information will always be available (automatic time limits for data protection, compatibly with the legal requirements, depending on the compatible authorizations at the system level and the legal requirements (criminal and administrative investigations on money laundering)); <tb> 4. <SEP> the function performed (integrated software) by the system of the equipment is that it allows the identification of the user as the person entitled in relation to the operation to be performed; <tb> 5. <SEP> security of identification is thus guaranteed (unlike password access systems, logins, etc., which do not guarantee that the economic beneficiary is actually the one who is carrying out the operation, unlike for example of ID systems); <tb> 6. <SEP> the purpose is the identification of the user through a combination of user article and fingerprint (trade name "BIOSIC"); the system software will obviously be able to set all the particular access conditions required depending on the operation (for example access threshold based on age, etc.); through the device of the invention, the database system checks the data collected by the identification means (called "BIOSIC"); <tb> 7. <SEP> the data are entered in the card by authorized persons (for example notaries), authorized to recognize the identification documents of the potential user, and who thus (by issuing the user article, card or other) certify their accuracy and must also carry out the assessments imposed by the due diligence in the financial field as required by the competent Authorities and Bodies (eg FINMA) in application of the anti-money laundering rules; these are the advantages that the system of the invention commercially (TOPAS - BIOSIC) offers compared to the "simple" verification of the signature or electronic certificates; the first fundamental step in the system, to which the present invention refers, therefore consists in issuing the identification card to the user, which can be for sale by payment of a fee in the form e.g. one-off payment (ie only on issue, without annual subscription) or by way of use (subscription with or without payment of the identification card); <tb> 8. <SEP> the transaction authorizations offered by the system can be individualized; <tb> 9. <SEP> the code (which checks the compatibility between card and fingerprint) is 128 bit encrypted.

[0016] B. Technical process: <tb> 1. <SEP> Reading of the fingerprint by the biometric detector sensor; through the support of the User Article on the reader, chip or similar means, which, through the integrated management software of the equipment of the invention, triggers a process that starts an encrypted / encrypted code towards the database server, which in turn it sends an encrypted yes / no response back to the equipment; <tb> 2. <SEP> the three fundamental elements that characterize the equipment and its use can be summarized under the following headings: <tb> <SEP> - <SEP> what the user owns: the user article (magnetic card, electronic card, chip or other equivalent means) readable by the means of the; <tb> <SEP> - <SEP> what the user knows: the password; <tb> <SEP> - <SEP> who is the user: and this is an element of distinction, biosecure authentication, with respect to traditional equipment (e.g. ATMs) which are connected only to the first two elements; <tb> 3. <SEP> the equipment therefore constitutes the hardware with integrated management software for the electronic communication and support process of the biosecurity recognition IT structure and access to operations and the remote server, as well as the control of all utilities, incorporated, on site and on the network; 4. <SEP> the apparatus of the invention can also operate independently of the BioSecure (BIOSIC) mode, for example with connection to a known ID system already previously authenticated biosecure and also therefore in connection with other third party systems; <tb> 5. <SEP> similarly, the biosecure system can also operate independently of the aforementioned equipment; <tb> 6. <SEP> The biosecure functionality operates via a biometric identification card; it can also be in the execution independent of the equipment and in this case it is made up of an ID box that allows the user to read the user article and the biometric data, and which contains the IT support with control and process protocol and therefore can be used with any computer or electronic medium on the network; <tb> 7. <SEP> the user article (card, card, etc.) of access contains the data in an irreversible way, that is, it cannot be edited, the data entered in it cannot be canceled or modified; <tb> 8. <SEP> the equipment also allows access to the INCA MAIL system, ie secure e-mail, certified e-mail service offered by Swiss Post or equivalent; the user can therefore receive e-mail correspondence on the apparatus of the invention (and also carry it out); the user can also confirm receipt of e-mail correspondence through the biosecure media method; this therefore represents a simplified but extremely safer system for confirming receipt of an e-mail message and receipt that has actually been received and read by the recipient (the user) and not by third parties (such as his collaborators, family members or usurers); <tb> 9. <SEP> in addition to the above, it is also possible to give the user a personal miniature device in the form of a portable implementation (the size of a current iPhone) or integrate it on a smartphone, minitablet or the like, of course this version it will not have all the hardware functionalities of the physical supports of the equipment in its execution of a fixed position in the form of a bank or a virtual counter in all respects, which in any case for some it can perform through network peripherals; with said tool the user can, for example, also carry out e-banking operations; even if he / she gives the task of preparing these operations by a collaborator, it is always the owner user who will have to personally give confirmation for the transmission of the payment order. <tb> 10. <SEP> It is therefore possible to have a personal mobile device (the size of a smartphone) to access the functions described above.

More precisely, the present invention relates to a system comprising an electronic-mechanical apparatus suitable for carrying out financial operations, with user identification using biometric data in association with an electronic or hybrid optical-electronic recognition item in connection with a database to be remote.

[0018] The electronic-mechanical equipment, for the online execution of digital telematic transactions and certified electronic operations of all kinds, in completely anonymous and secure form, is made up of an integrated system equipment - software - user article and its means of detection.

[0019] The electronic-mechanical equipment is characterized by being able to perform digital telematic operations, in particular financial transactions, certified electronic mail, document transmission, up-load and down-load and other various electronic operations on the network , with user identification through their biometric data in association with a user item, (magnetic card or built-in electronic micro-circuit, secure smart card, chip, chip, flash-disk, electronic key or similar means in any case with integrated software capable of generating confirmation codes or tokens, in connection with a database on a remote server).

[0020] The electronic-mechanical equipment, for the secure realization of certified electronic operations of all kinds in an anonymous and secure form on a smart card network, is characterized by the fact that said user article is an intelligent (smart) article capable of to exchange data with a remote server which stores data and user assets by means of a software integrated into said equipment, which allows the encrypted exchange of information, keys, recognition and confirmation codes in a completely opaque form to third parties without leaving said data apparatus traces of said article and said remote server and of the information exchanged between them by processing the instructions given to it.

In a preferred non-limiting embodiment, the apparatus of the invention is characterized by integrating the following components: a reader of the user article, magnetic card, electronic card, chip or other, by a control sensor biometric data, fingerprint detector, optical iris detector or other, two screens, one of which is a touchscreen, a virtual quick keyboard, a webcam, a barcode reader, a document printer, vouchers and tickets, a receiver, banknote reader test, a banknote container box, a coin receptor, a coin container, an opening, a dispenser slot, for issuing credit cards, a credit card processor and dispenser, a card collection tray , cards, a banknote dispenser, a scanner, a USB socket, a microphone, a Bluetooth device; a WLAN socket, a LAN connection access, stereo speakers, an external Video output, and a music output, a power or power outlet, an antenna for amplifying the internal modem signal, a safety pedestal, a removable drawer for coins , banknotes and documents, an integrated software for managing these components and the interface between the user article and the remote server.

REALIZATION OF THE INVENTION

[0022] Hereinafter we give a detailed description of some preferred non-limiting embodiments of the present invention with reference to the figures of the annexed drawings, without however detracting from the extension and generality of the invention itself. <tb> - <SEP> Fig.1 illustrates the innovative multifunction kiosk with an attractive design and unique features, in which the present invention takes shape, which also thanks to a clean and ergonomic design is able to be integrated into a any context; <tb> - <SEP> Figs.1bis, 1ter illustrate a second embodiment of the innovative work station with all its peripherals and integrated devices attached, in which the present invention takes shape; <tb> - <SEP> Fig. 2 shows in a different embodiment of the apparatus of the invention some of the peripherals with which the machine itself is equipped, which make it perfect for multiple applications. <tb> - <SEP> Fig. 3 represents the base of the appliance, or secure pedestal in ballasted metailo which makes the furniture of the appliance stable and immovable and protects the removable coin case from theft or vandalism; <tb> - <SEP> Figs.4a, 4b illustrate, respectively, some of the additional peripherals, modem antenna for the amplification of the internal modem signal and for use even in places with low reception signal, utilities sockets various, etc., and biometric data detection sensor such as fingerprint, for fingerprint recognition for secure access, secure sending of all information and signed operations, and execution of all certified transactions, which can be replaced by another equivalent biometric detector; <tb> - <SEP> Figs. 5a, 5b illustrate the additional peripherals such as an in-line barcode reader for reading cards and product codes and a high definition camera for recognizing the operator against theft and vandalism, acting as a scanner on request; <tb> - <SEP> Fig.6 shows the fully customizable tactile keyboard with which the equipment is equipped; <tb> - <SEP> Fig.7 describes the internal configuration and components of the equipment; <tb> - <SEP> Fig.8 represents the flow chart or logical flow of a classic biosecure equipment transaction; <tb> - <SEP> Fig.9 illustrates the same flow even if the transaction is launched from a PC with a biosecure data reader connected to it via USB; <tb> - <SEP> Fig.10 describes the same previous flow if the transaction is launched remotely with a separate biosecure reader device independent of the PC.

Below we give a detailed description of a non-limiting embodiment or embodiment of the present invention.

DESCRIPTION OF THE COMPONENTS OF THE INVENTION SYSTEM

[0024] The innovative M multifunction kiosk with an attractive design, Figs. 1, 1bis, 1ter, 2, and with unique functions, in which the invention of the present equipment is preferably expressed, it is accessible by inserting a user article (magnetic identification card or equivalent electronic or optical means) in the reader 1 and control of a biometric data (fingerprint, optical iris detector or other) by means of sensor 2; it is equipped with two screens 3, 4, a tactile keyboard 5 developed to be completely customizable, a webcam 6 for recognizing the user against theft and vandalism, as well as reading / scanning identification documents, such as cards, cards of identity and passports, of a bar code scanner, or bar code reader, 7 in line for reading cards and product codes, of a printer 8 of documents, vouchers and tickets, of a verifier reader and banknote receptor 9, a banknote container 10, a coin or coin acceptor 11, a coin container 12, an opening or slot for the entry of credit cards 13, a container for cards, money cards and tickets 14, of a computer and dispenser of credit cards, money, tickets, vouchers or other means of payment or credit 15, of a separate scanner 16, of USB socket 17, of microphone 8, of Bluetooth 19; it is equipped with an antenna 20 'to amplify the signal of the internal modem WLAN 20 from router or Wi-Fi for reliable use even in places with low signal intensity, LAN access 21, stereo speakers 22, 22', external sockets for Video 23 and audio music output 23 ', power socket or power socket 24, Figs. 1bis, 1ter, 2, 3, 4a, 4b, 5a, 5b, 6, 7.

[0025] With the same components and functionalities but with changed design, another embodiment of Figs. 1bis, 1ter.

The equipment M constitutes a self-service bank counter or even more a real multifunctional work station for the execution of an infinite number of transactions, presenting for this purpose a functional, safe, attractive and ergonomic design.

[0027] The secure base 25 in metal, or other ballasted safety material, makes the equipment body M stable, which can also be solidly fixed to the floor or wall, it protects the deposit and removable cash box 25 'from theft and vandalism, Fig.3.

[0028] The biometric recognition device (trade term "BioSecure") consists of a fingerprint reader 2 in combination with a user item (smart card, card, credit card / card, recognition chip or other user item similar and equivalent, through the reader 1, Figs. 1, 1bis, 1ter, 2, 4b, 5b.

[0029] A biometric fingerprint reader 2 is arranged for fingerprint recognition for secure access, secure sending and for all information and operation signed or similar biometric detector sensor, Figs. 1, 1bis, 1ter, 2, 4b, 5b.

[0030] The equipment is equipped with two high quality screens 3, 4, for example 22 "LCD, one at the bottom 4 'touch screen' offers the operating menu and one at the top 3 shows the process of the transaction in its various successive stages of development, Figs. 1, 1bis, 1ter, 2, 4a, 4b, 5b.

[0031] A virtual touch keyboard 5 has been developed to be completely customizable, Figs. 1, 1bis, 1ter, 4a, 4b, 5b, 6.

[0032] A webcam 6 is arranged for user recognition against theft and vandalism, as well as for reading / scanning identification documents, such as for example cards, identity cards and passports, Figs. 1, 1bis, 1ter 4b, 5b.

[0033] A bar code reader, 7 in-line for reading cards and product codes, is also inserted in the apparatus, Fig.5a.

[0034] The apparatus body M is configured and equipped with a complete set of peripherals which make it perfectly adequate and functional for multiple applications, such as a document and ticket printer 8, a banknote reader and receptor 9, a banknote container 10, a coin or coin acceptor 11, a coin container 12, an opening or slot for entering credit cards 13, a container for cards, money cards and tickets 14, a credit card processor and dispenser, money, tickets or other means of payment or credit 15, a separate scanner 16, a USB socket 17, a microphone 8, a Bluetooth device 19, Figs. 1, 1bis, 1ter, 2, 4a, 7.

[0035] This equipment is also equipped with an antenna 20 'for the amplification of the signal of the internal modem WLAN 20 from router or Wi-Fi, for reliable use even in places with low signal intensity, as well as the LAN socket 21 , which allow permanent and reliable networking, Figs. 1, 1bis, 1ter, 2, 4a.

FUNCTIONALITY DESCRIPTION

[0036] The software supporting the equipment performs the following functions: <tb> A. <SEP> The basic elements of the equipment with commercially called "TOPAS" system software are: <tb> <SEP> 1. <SEP> allow the user, once registered with a subscription identification form, commonly called SIM CARD, to be able to carry out all future transactions (financial or non-financial) that it will perform with the the equipment of the present invention without making use of the usual recognition requests of traditional methods (telephone call to a hot line, recognition phrases, passwords, etc., for example), but only by giving the equipment the appropriate user article and confirming the access by fingerprint; <tb> <SEP> 2. <SEP> at the level of the equipment itself, the operations are completely anonymous (therefore it is not the equipment that contains the software with sensitive and recognition data of the user and the user), but only the integrated information management software between user identification and remote server account capable of generating codes or tokens, which guarantees the user secure operations on the network; <tb> <SEP> 3. <SEP> at the level of the database (server), on the other hand, there remains the trace of access and identification and of every financial transaction; this information will always be available (automatic time limits for data protection, compatibly with legal requirements, depending on the compatible authorizations at the system level and the legal requirements (criminal and administrative investigations on money laundering)); <tb> <SEP> 4. <SEP> the function performed (integrated software) of the equipment is that it allows the identification of the user as the person entitled in relation to the operation to be performed; <tb> <SEP> 5. <SEP> security of identification is thus guaranteed (unlike password access systems, logins, etc. which do not guarantee that the economic beneficiary is actually the one who is carrying out the operation, to difference, for example, of ID systems); <tb> <SEP> 6. <SEP> the purpose is the identification of the user through a combination of use of the user article and fingerprint (trade name "BIOSIC"); the system software will obviously be able to set all the particular access conditions required depending on the operation (for example, access threshold based on age, limitation of transactions or their amounts, etc.); through the apparatus of the invention the database system checks the data collected by the aforementioned identification means (called "BIOSIC"); <tb> <SEP> 7. <SEP> the data are entered in the card by authorized persons (for example notaries), enabled to recognize the identification documents of the potential user, and that thus (by issuing the user article, card or other) they certify its accuracy and must also carry out the assessments imposed by the financial due diligence as required by the competent Authorities and Bodies (eg FINMA) in application of the anti-money laundering rules; These are the advantages that the system of the invention commercially (TOPAS - BIOSIC) offers compared to the "simple" verification of the signature or electronic certificates; the first fundamental step in the system, to which the present invention refers, therefore consists in issuing the identification card to the user, which can be for sale by payment of a fee in the form e.g. one-off payment (ie only on issue, without annual subscription) or by way of use (subscription with or without payment of the identification card); <tb> <SEP> 8. <SEP> the transaction authorizations offered by the system can be individualized; <tb> <SEP> 9. <SEP> the code (which checks the compatibility between card and fingerprint) is 128 bit encrypted. <tb> B. <SEP> Technical procedure: <tb> <SEP> 1. <SEP> Reading of the fingerprint by the biometric detector sensor, through the support of the User Article on the reader, chip or similar means, which, through the integrated management software of the device of the the invention triggers a process that starts an encrypted / encrypted code towards the database server, which in turn sends a yes / no reply, also encrypted, to the device; <tb> <SEP> 2. <SEP> the three fundamental elements that characterize the equipment and its use can be summarized under the following headings: <tb><SEP> <SEP> - <SEP> what the user owns: the user article (magnetic card, electronic card, chip or other equivalent readable means) with the reader of the equipment; <tb><SEP> <SEP> - <SEP> what the user knows: the password; <tb><SEP> <SEP> - <SEP> who is the user: and this is an element of distinction, biosecure authentication, with respect to traditional equipment (e.g. ATMs) which only belong to the first two elements; <tb> <SEP> 3. <SEP> the equipment therefore constitutes the hardware with integrated management software for the electronic communication and support process of the biosecurity recognition IT structure and access to operations and the remote server; <tb> <SEP> 4. <SEP> the apparatus of the invention can also operate independently of the BioSecure (BIOSIC) mode, for example with connection to a known ID system previously previously authenticated biosecure and also therefore in connection with other third party systems; <tb> <SEP> 5. <SEP> similarly, the biosecure system can also operate independently of the aforementioned equipment; <tb> <SEP> 6. <SEP> The biosecure functionality operates via a biometric identification card; it can also be in the execution independent of the equipment and in this case it consists of an ID box that allows reading of the user article and biometric data and which contains the IT support with control protocol and process and therefore can be used with any computer or medium electronic network; <tb> <SEP> 7. <SEP> the user article (card, card, etc.) of access contains the data in an irreversible way, that is, it is not editable, the data entered in it cannot be deleted or modified; <tb> <SEP> 8. <SEP> the appliance also allows access to the INCA MAIL system, or certified e-mail service offered by Swiss Post; the user can therefore receive e-mail correspondence on the apparatus of the invention (and also carry it out); the user can also confirm receipt of e-mail correspondence through the biosecure media method; this therefore represents a simplified but extremely safer system for confirming receipt of an e-mail message and receipt that has actually been received and read by the recipient (the user) and not by third parties (such as his collaborators, family members or usurpers); <tb> <SEP> 9. <SEP> in addition to the above, it is also possible to deliver to the user a personal miniaturized device in the form of a portable implementation (the size of a current iPhone) or integrate it on a smartphone, minitablet or the like , of course, this version will not have all the hardware functionalities of the equipment's physical supports in its execution as a fixed position in the form of a bank or a virtual counter in all respects; with this tool the user can, for example, also carry out e-banking operations; even if he were instructed to prepare these operations by a collaborator, it is always the owner user who will have to personally give confirmation for the transmission of the payment order. <tb> <SEP> 10. <SEP> It is therefore possible to have a personal mobile device (the size of a smartphone) to access the functions described above. It should also be noted that this realization, even without the hardware availability of physical supports, still allows performing some physical operations remotely, such as printing, reading and saving data on network peripherals.

Logical flow BioSic (biosecure)

[0037] Flow chart scheme or logical flow of a classic equipment-biosecure transaction; <tb> - <SEP> The application is launched through the introduction of the BioSic chip inputs and the Biometric Data, <tb> - <SEP> In response the Server generates a token to activate the recognition procedure, <tb> - <SEP> The token is forwarded to the reader to trigger the encryption key of the response packet, <tb> - <SEP> The Answer contains the ID of the user article and the result of the comparison between biometric input and user article data, <tb> - <SEP> The server receives the encrypted packet and uses the token to decrypt it, <tb> - <SEP> The server receives the instruction: <tb> - <SEP> YES and chip ID <tb> - <SEP> NO and chip ID <tb> - <SEP> Crypto error <tb> - <SEP> The application receives a response from the server and decides whether to authorize or deny the transaction, This scheme is represented by Fig. 8.

[0038] The same flow above (transaction) can be performed if it is launched from a PC with a biosecure data reader connected to it via USB, Fig. 9.

[0039] Similarly, the same flow above (transaction) can be performed if the transaction is launched remotely with a separate biosecure reader device independent of the PC, Fig.10.

In addition to guaranteeing transactions of all kinds in complete safety, the system comprising the apparatus of the invention introduces an innovation in the market, we believe, such as to constitute a milestone of innovation in the means of performing banking services. In fact, it is a multifunctional device that allows the execution of any banking service in physical form, in the same way as any current banking year, without however needing the structure and staff of a branch, unlike the online bank that does not allow physical transactions.

In fact, said apparatus can assume all the functions of a terminal or bank counter, receive and supply money, cards, etc.

It is also capable of generating coded tickets (bar codes), electronic money cards, debit / credit cards, receiving banknotes, checks, securities and coins, issuing tickets, digitizing original documents to be deposited on the server account, etc. .

[0043] It can also be used as a gaming station (gaming, gambling) and betting (betting, wagering), as an electronic commerce workstation, as a desk for online commodity trading, stock exchange and derivative transactions (future and options).

Being completely oriented towards the user, the keyboard and the touch screen allow to satisfy the needs of each user (for example: language, somatic, disability, etc.)

[0045] It constitutes an epochal novelty such as a robot bank or a fully automated self-service physical counter which replaces in full a current common banking agency.

It can also integrate banking services by adding further services and services, such as travel agency, ticket sales, e-mail correspondence, etc.

Claims (11)

1. System for carrying out encrypted telematic digital operations characterized in that it comprises: - a user article, comprising data relating to an identification code of said user associated with biometric data of said user; - an apparatus (M) for the electronic communication process, comprising a software for the management of the electronic information, means (2) for biometric detection of said user and means (1) for reading the user article of said user; - a remote server, operationally connected to said equipment (M) to confirm the identification of said user and to carry out said digital telematic operations; wherein said biometric detection means (2) are able to uniquely identify biometric data of said user, wherein said user article reading means (1) are adapted to identify said data of said user identification code, wherein said telematic information management software is able to send said biometric data of said user and said data of the identification code of said user to said remote server, wherein said remote server is able to identify said user by comparing said biometric data of said user received with said identification code of said user received and to enable said equipment (M) if said user is correctly identified by sending a confirmation of recognition, e wherein said user article comprises said data relating to said user identification code associated with said biometric data of said user in encrypted mode. System for carrying out digital telematic operations according to claim 1, wherein said apparatus (M) is constituted by an ATM or smartphone, tablet or personal computer. System for carrying out digital telematic operations according to claim 1 or 2, wherein said biometric detection means (1) comprise a fingerprint detector or an optical iris detector. System for carrying out digital telematic operations according to one of claims 1 to 3, wherein said user article is constituted by a magnetic card or by an embedded micro-circuit card or by a smart card or by a miniaturized electronic circuit or from a portable mass storage or from an electronic key. System for carrying out digital telematic operations according to one of claims 1 to 4, wherein said telematic information management software is able to send said biometric data of said user and said data of the identification code in encrypted mode, and wherein said remote server is adapted to decrypt said biometric data of said user and said identification code of said user received. 6. System for carrying out digital telematic operations according to claim 5, wherein said remote server is adapted to enable said equipment (M) by sending an encrypted acknowledgment confirmation. System for carrying out digital telematic operations according to one of claims 1 to 6, wherein said apparatus (M) for the telematic communication process comprises a reader (1) of said user article, a sensor (2) for biometric detection , two screens (3, 4), one of which is tactile, a virtual rapid keyboard (5), a webcam (6), a bar code reader (7), a printer (8) of documents, a receiver (9) of banknotes, a container (10) of banknotes, a dispenser (14) of banknotes, a receptor (11) of coin, a container (12) of coin, a receptor (13) of cards, a container (15) of cards , a card dispenser (13), a scanner (16), a USB socket (17), a microphone (18), a Bluetooth device (19), a WLAN socket (20), a LAN connection access (21), stereo speakers (22, 22 '), a video output (23), an audio output (23'), a power socket (24), an antenna (20 ') for the amplification of an internal modem signal or, a safety pedestal. Process for carrying out digital telematic operations by means of the system for carrying out digital telematic operations according to one of claims 1 to 7, wherein said process is characterized in that it comprises the following steps: - execution of an application on said equipment (M), when said biometric data of said user and said data of the identification code of said user are identified respectively by means of said biometric detection means (2) and said means (1) of reading of said user article; - activation of a recognition procedure on said remote server by generating a token; - sending said token to said equipment (M) to generate the encryption key of said biometric data of said user and of said data of the identification code of said user; - sending said biometric data of said user and said data of the identification code of said user encrypted to said remote server; - decryption to said remote server of said biometric data of said user and of said data of the identification code of said encrypted user received by the use of said token; - generation of said acknowledgment to said remote server; - encryption of said acknowledgment of acknowledgment by said token to said remote server; - enabling the equipment (M) to receive and decrypt said acknowledgment confirmation; - sending the request for an encrypted telematic digital operation to said remote server; - decryption to said remote server of said digital telematic operation by means of the use of said token; - generation of said operation confirmation to said remote server; - encryption of said operation confirmation to said remote server by means of said token; - enabling the equipment (M) to receive and decrypt said confirmation of operation; Use of the system to carry out digital telematic operations according to one of claims 1 to 7, as an automated bank branch for electronic accounting operations, online digital financial transactions, stock exchange trading operations and exchange of values and documents on physical medium. Use of the system to carry out digital telematic operations according to one of claims 1 to 7, as a workstation for travel agency, shows and electronic commerce. Use of the system to carry out digital telematic operations according to one of claims 1 to 7, as a workstation for the execution of safe video game, gambling, betting and betting operations.