The race to develop software-defined vehicles (SDV) is accelerating, with clear front-runners already releasing SDVs ready for the road, while others scramble to reorganize software divisions.
The SDV market is expected to grow to between $400-600 billion by 2030, according to Deloitte. However, the rush to produce software architectures capable of handling the latest autonomous features as well as over-the-air (OTA) updates must also remember that safety and security must remain of paramount importance
One of the latest releases comes from Toyota. The world’s largest automaker recently showcased its 2026 RAV4 and announced the model will be entirely electrified for its sixth generation.
The impact of this new release is garnering significant attention, especially considering Toyota sold almost 1 million RAV4s in 2024—over 5% of global vehicles sold last year. However, a lesser-known feature in the 2026 RAV4 could prove just as revolutionary for Toyota’s future.
Automotive Applications Manager at Keysight.
Toyota announced that the 2026 RAV4 will feature its all-new Arene automotive software platform. This system was developed by its software and automated driving subsidiary, Woven by Toyota. Initially, Arene will enable its updated Toyota Safety Sense 4.0 driver-assist system as well as next-generation Toyota Audio Multimedia System. While this may seem minimal to start, the automaker acknowledges that Arene is its first public step toward full SDV capabilities.
This initial release of Arene enables three key aspects of SDV functionality:
1. It unifies software design, coding, testing, and deployment—allowing developers to build applications across multiple vehicles.
2. It facilitates the testing and validation of the software in virtual environments, reducing development time and cost.
3. It more safely collects and manages data to support OTA updates of the software system.
Toyota recognizes that Arene is a critical focus area as it tries to keep up with competitors like Hyundai with its Pleos system or Chinese automakers like BYD and Xiaomi who have accelerated vehicle development timelines to half of what traditional OEMs take.
Shortening time-to-market is a key driver behind SDVs as the focus remains around software that can be produced at any time rather than time-consuming hardware development that must be finalized before production. However, not all automakers have been as successful at keeping pace and the race to be first can introduce some undesired consequences: security issues.
Cybersecurity for a Software-Defined Future
This rush towards software-driven transformation promises unprecedented levels of autonomy, connectivity, and customization, but it also introduces a new era of complex cybersecurity challenges. The importance of robust security in SDVs cannot be overstated; it is fundamental to the safety, reliability, and trust consumers place in these advanced vehicles.
While all modern vehicles generate vast amounts of data, SDVs require the highest levels of connected capabilities both internally and externally to its environment, like cellular and the cloud.
New, more powerful onboard high-performance computing facilitates this connectivity, enabling advanced features such as OTA updates, personalized customer experiences, and autonomous systems. However, every line of code, every connected service, and every communication pathway represents a potential attack point.
That is why the most critical concern for SDV connectivity is safety and security. A successful cyberattack on an SDV could have serious consequences, which could potentially lead to accidents or other scenarios endangering the occupants of the vehicle, other road users, and pedestrians.
Attackers could disable critical safety features, manipulate sensor data to cause misinterpretation, or even remotely lock or unlock doors. The potential for large-scale, simultaneous attacks on fleets of vehicles also presents a severe prospect for public safety.
Cyber attacks were up
The Upstream 2025 Global Automotive and Smart Mobility Cybersecurity Report claims that cyber attacks were up significantly in 2024, with 60% of all attacks having high or massive-scale impact and 92% of attacks executed remotely. Large scale ransomware attacks are causing significant industry disruption, like the CDK Global attack in 2024.The gap between enterprise-wide cyber resilience and the rising scale of attacks has never been more apparent.
The interconnected nature of SDVs also means that vulnerabilities in one component or system can have a domino effect across the entire ecosystem. A weakness in a third-party application or a charging station could be exploited to gain access to an entire vehicle's network. This necessitates a comprehensive and proactive approach to automotive cybersecurity testing.
That is why automotive manufacturers now need holistic testing platforms that assess the entire supply chain, from chip manufacturers to service providers, that meet global cybersecurity standards like ISO/SAE 21434 and UNECE WP.29. Continuous monitoring, vulnerability assessments, and rapid incident responses are now essential for mitigating risks in this evolving, dynamic environment.
Cybersecurity is no longer an add-on feature for software-defined vehicles; it is a fundamental aspect that secures its very existence and functionality. The promise of SDVs, of enhanced safety, convenience, and autonomy, remains vulnerable to exploitation without robust cybersecurity measures. The future of transportation for all hinges on the industry’s ability to build not just smarter vehicles, but more secure ones as well.
We list the best site for hiring developers.
This article was produced as part of TechRadarPro's Expert Insights channel where we feature the best and brightest minds in the technology industry today. The views expressed here are those of the author and are not necessarily those of TechRadarPro or Future plc. If you are interested in contributing find out more here: https://www.techradar.com/news/submit-your-story-to-techradar-pro
You must confirm your public display name before commenting
Please logout and then login again, you will then be prompted to enter your display name.