7 roadblocks for software-defined vehicles and how to overcome them

Jul 17, 2024 by Damian Barnett, Amod Mulay

 

  

In brief

  • New requirements and market demands for vehicles transform them into computers on wheels. Software-defined vehicles (SDVs) are now the big thing in automotive
  • With the switch to a software-first approach, there come new challenges that need new solutions 
  • In this blog, we present seven of the most pressuring roadblocks on the way towards SDVs — and how to reach your goal, nevertheless 

  

In today’s rapidly evolving automotive landscape, the concept of software-defined vehicles (SDVs) has become a revolutionary force. Gone are the days when cars were purely mechanical marvels. Nowadays, they’re sophisticated software platforms on wheels. However, amid the promise of innovation, significant challenges lie ahead. Let’s have a look at the seven most pressing ones and their available remedies. 

 

Data privacy

 

Data privacy is a critical concern in the development of SDVs. Such vehicles generate and process vast amounts of data from numerous sources — ensuring this data remains private involves addressing several key challenges: 

Volume and variety of data collected by SDVs: 

  • Personal information: Driver and passenger identities, preferences and contact details
  • Location data: GPS coordinates, routes traveled and geolocation history 
  • Behavioral data: Driving habits, speed, acceleration patterns and in-car activities 
  • Vehicle data: Diagnostic information, performance metrics and maintenance logs 

Managing and protecting this diverse set of data requires robust privacy policies and technical measures. 

Regulatory Compliance: Different regions have stringent data privacy regulations that automotive manufacturers must comply with. Key regulations include: 

  • General Data Protection Regulation (GDPR): Governs data privacy in the European Union, emphasizing user consent, data minimization, and the right to be forgotten 
  • California Consumer Privacy Act (CCPA): Provides California residents with rights regarding the collection and use of their personal data 
  • Personal Data Protection Law (PDPL): Similar regulations are emerging in other jurisdictions, requiring global compliance strategies 

Ensuring compliance with these regulations involves implementing comprehensive data protection practices and maintaining transparency with users. 

User consent and transparency: Obtaining explicit user consent for data collection and processing is fundamental for data privacy. This includes: 

  • Informed consent: Providing clear information about what data is collected, how it will be used and with whom it will be shared 
  • User control: Allowing users to opt-in or opt-out of data collection, access their data and request deletion of their data 
  • Transparency: Regularly updating users on data privacy policies and any changes in data handling practices 

International data transfers: Managing the complexities of transferring data across borders, especially when dealing with regions that have different data protection laws. This involves: 

  • Adequacy decisions: Ensuring that data transfers comply with adequacy decisions or other legal mechanisms such as Standard Contractual Clauses (SCCs) or Binding Corporate Rules (BCRs) 
  • Cross-border data flows: Implementing measures to ensure that international data transfers do not compromise data privacy. 

Data minimization and purpose limitation: Collecting only the data that is necessary for specific purposes and ensuring that it is used solely for those purposes. This reduces the risk of data misuse and enhances privacy. 

Automakers and end-users have become aware of the security risks that data breaches entail. To establish and maintain trust, both  your and their data have to be protected at all times. Zoreza Global’s connected vehicle team has implemented and tested state-of-the-art solutions and practices in the cloud and at the edge to build solutions that can withstand cyber-attacks. 

  

Reliability and safety

 

The shift towards SDVs promises significant advancements in functionality, efficiency and user experience. However, ensuring reliability and safety is paramount, given that any software malfunction could have dire consequences. Here are a few challenges and considerations in this area: 

  • Software bugs and glitches: Software, unlike mechanical systems, is prone to bugs and glitches. Even minor errors in code can lead to significant malfunctions in vehicle operation. Rigorous software testing like integration testing and system testing are crucial in order to identify and rectify bugs before deploying software on a vehicle.  
  • Redundancy and fail-safe mechanisms: To ensure safety, vehicles must be equipped with redundancy and fail-safe mechanisms. Critical systems such as braking, steering and acceleration should have backup systems that can take over in case of a primary system failure. Implementing these mechanisms requires careful design and testing to ensure they function correctly in emergency scenarios. 
  • Functional Safety Standards (ISO 26262): The automotive industry adheres to the ISO 26262 standard for functional safety of electrical and electronic systems in vehicles. This standard outlines the necessary requirements for the development process, from conceptual design to production and operation. Ensuring compliance with ISO 26262 involves rigorous hazard analysis, risk assessment and validation processes. 
  • Safety Of The Intended Functionality (SOTIF): This is a relatively new concept in automotive safety, specifically addressing the challenges and potential hazards associated with advanced driver-assistance systems (ADAS) and autonomous driving features in SDVs. SOTIF goes beyond traditional safety measures to ensure that these complex systems function correctly in a wide range of real-world conditions. 
  • Real-Time Operating Systems (RTOS): Many critical vehicle functions rely on real-time data processing. The proper integration of reliable real-time operating systems (RTOS) in today’s OEM.os is essential for managing these time-sensitive tasks. An RTOS ensures that high-priority tasks are executed within stringent time constraints, minimizing the risk of delays that could impact safety. 
  • Legal and regulatory compliance: Adhering to legal and regulatory requirements is essential for ensuring safety. Different regions may have specific regulations governing the safety and reliability of vehicles. Ensuring compliance with these regulations involves rigorous documentation, regular audits and staying updated with evolving standards. 

In summary, ensuring the reliability and safety of software-defined vehicles requires a holistic approach that encompasses rigorous testing, robust design principles, continuous monitoring and adherence to stringent safety standards. By addressing these challenges, the automotive industry can build vehicles that not only leverage advanced software capabilities but also provide a safe and reliable experience for users. 

 

Complexity of software integration

 

The transition to SDVs involves integrating a multitude of software systems and components to create a cohesive, reliable and efficient vehicle. This process of complex software integration presents several significant challenges: 

  • Diverse software ecosystem: Modern vehicles incorporate software from various sources, including in-house development, third-party suppliers and open-source communities. Ensuring that all these disparate software components seamlessly work together is a major challenge. Each software module may have its own development standards, protocols and update cycles, complicating the integration process. 
  • Complexity of control systems: Vehicles contain numerous control systems, each with specific functions and requirements. These include engine control units (ECUs), transmission control units and advanced driver-assistance systems (ADAS). Integrating these control systems into a unified software architecture requires meticulous planning and execution to ensure they operate harmoniously. 
  • Safety and reliability standards: The automotive industry adheres to stringent safety and reliability standards, such as ISO 26262 for functional safety. Ensuring that all integrated software components meet these standards is challenging but essential. This involves rigorous testing, validation and certification processes to ensure that the software performs reliably under all conditions. 
  • Over-the-Air (OTA) updates: OTA updates are critical for maintaining and improving vehicle software. However, managing OTA updates for a multitude of software components without disrupting vehicle operation is complex. Ensuring that updates do not introduce new vulnerabilities or compatibility issues is also a significant concern. 
  • Software life cycle management: Vehicles have a long life cycle, often spanning over a decade. Managing the life cycle of integrated software components, including updates, patches and end-of-life considerations, is a complex task. This requires robust version control, change management and support mechanisms. 
  • Data integration and management: Vehicles generate and process vast amounts of data from various sensors and systems. Integrating this data to provide coherent insights and enable advanced functionalities like predictive maintenance and personalized user experiences is challenging. Effective data integration requires robust data management frameworks and analytics capabilities. 
  • Cross-functional collaboration: Successful software integration requires collaboration across various disciplines, including software engineering, hardware engineering, cybersecurity and quality assurance. Coordinating efforts across these diverse teams to achieve a unified integration strategy is complex and requires effective communication and project management. 
  • Testing and validation: Comprehensive testing and validation are essential to ensure that integrated software performs as expected under all conditions. This includes unit testing, system testing and real-world testing scenarios. Developing robust testing frameworks that can accommodate the complexity of integrated systems is a significant challenge. 

Traditional integration approaches are likely to fail, as the possible combinations of system configuration are too big to handle. Only with modern paradigms like model-based systems engineering and the use of a software factory can you successfully integrate software for modern SDVs. Zoreza Global has a dedicated software factory offering that can support

  

Cybersecurity concerns

 

With increased connectivity and reliance on software, vehicles become vulnerable to cyber threats. Ensuring robust cybersecurity measures to safeguard against hacking, data breaches and malicious attacks is paramount. As vehicles become increasingly defined by their software capabilities, cybersecurity concerns have taken center stage. Ensuring the safety and security of SDVs involves addressing numerous complex challenges. Let’s look at some of them: 

  • Increased attack surface: Modern vehicles are equipped with a multitude of interconnected systems and sensors, all of which communicate over internal networks. This extensive connectivity creates numerous entry points for cyber attackers. Potential vulnerabilities can be found in infotainment systems, navigation units, telematics and even basic electronic control units (ECUs). 
  • Remote access risks: SDVs offer remote access features, such as keyless entry, remote start and OTA updates. While these features enhance convenience and functionality, they also present opportunities for remote exploitation. Attackers could potentially gain control of critical vehicle functions, posing a direct threat to passenger safety.  
  • Data breaches: Vehicles collect and process vast amounts of data, including personal information, driving patterns and location data. Cybercriminals can target this data for theft, leading to privacy breaches and potential misuse of sensitive information. Protecting this data requires robust encryption, secure data storage solutions and stringent access controls. 
  • Human factors: Cybersecurity is not just a technical issue; human factors also play a critical role. Ensuring that both manufacturers and consumers are educated about potential cybersecurity threats and best practices is essential. This includes training for automotive engineers and clear guidelines for vehicle owners on how to maintain their vehicle's cybersecurity. 

Malevolent attackers refine their methods all the time. Keeping up with countermeasures requires skill and ability. With Zoreza Global’s new security lab in Egypt, we offer a facility to test SDVs against all kinds of cybersecurity threats. 

 

Interoperability

 

Interoperability is a critical challenge in the development and deployment of SDVs. It involves ensuring that various software and hardware components from different manufacturers and suppliers work seamlessly together within the vehicle’s ecosystem. This requires addressing several key issues: 

  • Diverse component ecosystem: Modern vehicles integrate numerous components including sensors, control units, infotainment systems and telematics modules. These components often come from different manufacturers, each with their own proprietary standards and protocols. Ensuring that all these components can communicate and operate together without conflict is a significant challenge. 
  • Standardization: Lack of standardized protocols and interfaces complicates interoperability. While organizations like the Automotive Open System Architecture (AUTOSAR) and the Society of Automotive Engineers (SAE) work towards developing standards, the adoption and implementation of these standards across the industry are inconsistent. Establishing and adhering to common standards is essential for achieving interoperability. 
  • Communication protocols: Vehicles rely on various communication protocols, such as Controller Area Network (CAN), Local Interconnect Network (LIN), and Ethernet to connect different systems. Ensuring that software components can effectively communicate over these protocols and translating data between different protocols when necessary is a complex task. Protocol converters and gateways are often needed for bridging communication gaps. 
  • Software integration: Integrating software from multiple vendors involves dealing with different coding standards, development methodologies and update cycles. Creating a unified software architecture that can accommodate these differences while maintaining performance and reliability is challenging. Middleware solutions can help by providing a common interface for different software components to interact. 

The only way to ensure interoperability is to define and adhere to industry-wide standards. Zoreza Global is a member of ASAM e.V. and a consortium member of justbetterData. As such, we are contributing to open-source standards, like the ASAM OpenX family. 

 

Regulatory hurdles

 

The automotive industry operates within a framework of stringent regulations aimed at ensuring safety and compliance. The dynamic nature of SDVs poses a significant challenge for manufacturers and policymakers alike.  

Navigating the regulatory landscape is a significant challenge in the development and deployment of SDVs. As these vehicles incorporate advanced technologies and become more autonomous, existing regulatory frameworks need to evolve to address new risks and ensure safety, security and compliance. Here are a few regulatory hurdles in this domain: 

  • Fragmented global regulations: Different countries and regions have their own regulatory requirements for automotive safety, emissions, data privacy and cybersecurity. Navigating this fragmented landscape can be challenging for manufacturers aiming to deploy SDVs globally. Harmonizing these regulations to create a cohesive framework is an ongoing effort, but differences in legal systems and regulatory priorities complicate this process. 
  • Safety standards: Traditional safety standards, such as those outlined in ISO 26262 for functional safety of road vehicles, primarily address mechanical and electronic systems. SDVs require new or updated standards to address software reliability, fail-safe mechanisms, and the integration of complex software systems. Developing and adopting these new standards involves extensive research, testing and validation. 
  • Cybersecurity regulations: With the rise of connected and autonomous vehicles, cybersecurity has become a critical concern. Regulatory bodies are developing frameworks to ensure that vehicles are protected against cyber threats. For example, the UNECE WP.29 regulation mandates cybersecurity management systems for vehicle manufacturers. Complying with these regulations requires the implementation of robust cybersecurity measures, regular security assessments and continuous monitoring. 
  • Data privacy and protection: SDVs generate and process large amounts of data, including personal information, location data and driving habits. Regulations such as the General Data Protection Regulation (GDPR) in Europe and the California Consumer Privacy Act (CCPA) in the United States impose strict requirements on data collection, storage and processing. Ensuring compliance with these regulations involves implementing strong data protection measures and providing transparency and control to users regarding their data.
  • Autonomous vehicle legislation: The development of autonomous vehicles (AVs) introduces new regulatory challenges. Governments and regulatory bodies are working to create frameworks that address the unique risks associated with AVs, such as liability in the event of accidents, operational safety standards and testing and validation requirements.. For example, the U.S. Department of Transportation has issued guidelines for AV testing and deployment, but there is still a lack of comprehensive, unified regulations. 
  • Interoperability and standardization: Regulatory bodies are working towards establishing standards for interoperability and communication protocols in connected vehicles. This includes Vehicle-to-Everything (V2X) communication standards that enable vehicles to communicate with each other and with infrastructure. Ensuring compliance with these standards is essential for the safe and efficient operation of connected vehicles. 
  • Consumer protection: Ensuring that consumers are protected and informed about the capabilities and limitations of SDVs is crucial. Regulatory bodies need to establish guidelines for marketing, disclosure of information and consumer rights. This includes ensuring that consumers understand how their data is used and the implications of software updates and autonomous features. 
  • Intellectual property and innovation: Balancing the protection of intellectual property with the need for innovation and collaboration in the automotive industry is another regulatory challenge. Policies must encourage innovation while preventing monopolistic practices and ensuring fair competition. 

Keeping track of the increasing number of regulations and standards is a Herculean task. Experts in Zoreza Global’s Advisory offering constantly monitor the validation ecosystem and can help you to do so, too. 

 

Repair and maintenance

 

The independent after-market (IAM) repair industry has already gone through a major transformation with the introduction of electrification: Vehicles have become more software-defined and automakers have taken more control of the entire vehicle life cycle. As a result, original equipment manufacturers (OEMs) are reducing the footprint of service garages. But how will the IAM be able to support if not take over the maintenance of SDVs that no longer fall under warranty but require servicing nonetheless? Parts still need to be replaced, software updated and new regulations fulfilled. 

OTA updates are a convenient way to do this. Zoreza Global’s Connected offering has developed a cloud-based backbone to enable remote diagnosis and update services for SDVs. No more garage visits 

 

Paving the road ahead

 

Despite these and many more challenges, the benefits of SDVs are undeniable. From enhanced safety features and autonomous driving capabilities to personalized user experiences, the future of mobility holds immense promise. Overcoming the hurdles outlined above requires a strong collaboration across industry stakeholders, new development approaches and a steadfast commitment to taking responsibility in advancing automotive technology.  

The journey towards SDVs has begun. Get in touch and join us on the ride.

    

Damian Barnett , CTO Zoreza Global Automotive

Damian Barnett author linkedin

CTO Zoreza Global Automotive

Damian is Zoreza Global Automotive’s CTO. He is responsible for the technology, portfolio and partnership strategy. He has been working in embedded software development in multiple industries in various leadership roles across the globe for more than 25 years.

Amod Mulay , Solutions Director

Amod Mulay author linkedin

Solutions Director

Amod is a solutions director in connected mobility and responsible for R&D topics as well as key development initiatives with clients. He developed products for nearly 15 years in security, banking and automotive areas before transitioning to technical management roles.