Skip to main content

Watch integration

Version 1.0
June 2025

The Watch Payment product allows payments using Watch connected to Android and iOS smartphones.
Payments are based on the MDES Token Requestor solution from Mastercard.
Contactless payments are possible without a constant internet connection—both on the smartphone and the smartwatch.

The core payment and token provisioning process is based on the Token Requestor product and requires an active project with Mastercard.
VCPSDK is a certified and secure product, approved by EMVCo and Mastercard, and has been launched in multiple banking and partner applications.

1. Introduction

Basic information

The Wearables SDK is an SDK designed to integrate with Watch as Payment Instrument.
Wearables SDK enabling direct communication between smartwatches and payment systems.
It allows to create applications that support contactless payments directly from the Watch, eliminating the need for a paired smartphone during transactions.
This streamlined integration offers a secure and efficient way for users to make payments simply by wearing their smartwatch.

Product is based on Verestro Cloud Payment solutions for NFC Issuer Wallet with Mobile MasterCard MCBP 2.1 SDK.
See Verestro Product description here Token Requestor.

Requirements

  • Verestro Cloud Payment solutions for NFC Issuer Wallet integration as
    described Token Requestor
  • Verestro Wearables SDK for Android or iOS 
  • Integration with Watch Manufacturer

Components

  • Mobile Payment Application - application for integrating Verestro Cloud Payments for safe device&user authentication, card management and tokenization
  • Mobile DC SDK - Verestro SDK for device, user and cards management
  • UCP SDK - Verestro SDK for tokenization, token management and payment
  • Wearables SDK - Verestro SDK for enabling UCP SDK tokenization on Watch SDK
  • Watch SDK - Verestro SDK for token management and payment on Watch
  • Watch application - Verestro integration layer integrated directly to Client's watch
    application for communication with Wearables SDK and Watch SDK

Architecture

Architecture

2. Use Cases

2.1. Watch integration

Connection to Watch is usually realized by Watch's manufacturer application which allow to create connection and pair Watch device with Android/iOS Phone.
Development requires additional configuration on Watch manufacturer store. In order to start integrate Watch in client Mobile Payment Application (MPA) client need to:

  • create account on Watch manufacturer Store
  • add MPA packageId or bundleId
  • configure MPA trusted certificates for signing

2.2 MPA to Watch Connection

Connection from MPA to Watch is realized by Watch's manufacturer Library.
Wearables SDK allows to simply use Watch library along Verestro UCP SDK.

Watch connection

2.3. MPA to Watch Pairing

Once Watch is connected with MPA it can be used with Watch application for communication with Wearables SDK.
In order to create secure channel to WatchSDK bundled with Watch application UCP SDK must exchange pairing data with WatchSDK.

Watch pairing

2.4. Secure channel for data sending

During this process Wearables SDK create secure connection between UCP SDK and Watch SDK to send card profile and transaction credentials.

Every data synchronization requires to create new secure channel.
Both sender and receiver is verified during connection.
Process is transparent for MPA.

Secure channel

2.5. Token creation

During this process new Token is created for usage on dedicated Watch device.
Verestro SDK allow to create multiple Device along one SDK instance and tokenize same Card for each device.

Read more about Verestro SDK integration in order to tokenization: https://developer.verestro.com/books/token-requestor.

2.6. Add Token to Watch

During this process new created token for unique device (Watch) is transferred from certified UCP SDK to to Watch SDK using a secure channel.
Transferred Token contains token data to show on Watch UI like last four digits, expiration date and card visual.

Add Token to Watch

2.7. Add Token Credentials to Watch

During this process encrypted transaction credentials are transferred to Watch SDK and assigned to Token making it ready for contactless payments.
These credentials are stored on the device, enabling payments even without a constant internet connection or a direct link to the phone.
Process is used both for credentials add after sending token and for data synchronization between UCP SDK and Watch SDK.

Add Token Credentials to Watch

2.8. Token data synchronization

This process ensures that all token and payment-related data on the watch remains up to date.
During synchronization, both the MPA and the Watch application update the token status (active, suspended, or deleted) and the status of transaction credentials within the Watch SDK.
The Wearables SDK is responsible for maintaining the maximum number of transaction credentials on the Watch SDK to enable standalone payments directly from the watch.
Token and transaction credentials synchronization can be initiated by either the MPA or Watch application and should be performed every time the application is launched.

Additional Token synchronization use cases:

  • token managed by MPA or Client's Admin Panel
  • token updated by MasterCard with re-digitization
  • application and related tokens ares removed on Phone or Watch

Additional transaction credentials synchronization use cases:

  • sending new transaction credentials along with associated Token
  • transaction is performed on Terminal and Watch request synchronization
  • finished replenish credentials process on MPA
Synchronization

Token data - synchronization

Standard communication between MPA and Watch in order to keep both up to date.

Token status update

Invoked on MPA or remote (Admin Panel) action related to Token.

Token data - status update

2.9. Watch Payment

Process describes Payment flow on Watch.

  • User must unlock Watch to process payment and open Payment application.
  • Once the Payment Token is selected, the user can Tap & Pay on a terminal.
  • After the payment, the watch should attempt to communicate with the MPA to synchronize the credential state.

Payment

Payment authentication

Transactions must be authenticated, but this does not mean that every transaction requires separate confirmation.
The application uses Consumer Device Cardholder Verification Method (CDCVM) to authenticate the user. Depending on specific circumstances, the app may request biometric authentication or a PIN.
Since the service uses on-device authentication, no additional security mechanisms need to be implemented by the integrator.

2.10. Disabling Payments

If the watch is unpaired from the phone via the Wearable Provider's app or the payment app, it will no longer be able to process payments.
If the watch was connected to the phone at the time of unpairing, its stored payment data will be automatically deleted.
There is no possibility to transfer payment data between devices or retain it on the watch after switching to a new phone.
Blocking payments on both the phone and watch is possible through the Admin Panel - card issuer’s administrative panel.
The user can also remove the watch pairing from the mobile application, which will disable smartwatch payments.

Back to top