汽車軟體開發與安全解決方案

隨著供應商不斷推進能夠實現聯網汽車、電氣化、高級自動化和軟體定義汽車的新平台和功能，汽車產業正經歷著一波關注、投資和創新的浪潮。

本報告對汽車軟體、開發和部署工具以及網路安全解決方案市場進行了定義和評估，並從定量和定性兩個方面深入分析了推動市場變革的因素。報告中還檢驗了近期趨勢、不斷變化的工程需求以及再形成這一快速發展市場格局的供應商策略。

發表本報告

• Aeris
• Airbiquity / Karma Automotive
• Amazon / AWS
• Aptiv / Wind River
• Arm
• AUMOVIO /Elektrobit / PlaxidityX
• Aurora Labs
• AVL
• Block Harbor
• Broadcom / VMware
• BTC
• Cadence
• Canonical
• Cetitec（a Porsche company）
• Clearlake Capital
• COVESA / GENIVI
• Cybellum
• Dassault Systemes
• Deloitte
• dSPACE
• Eclipse Foundation
• Edge Impulse
• emlix
• ETAS（Bosch subsidiary）
• eSOL
• Excelfore
• Flexera
• Ford
• Foretellix
• GAIO Technology
• General Motors
• Green Hills Software
• HARMAN
• HPE
• Hyundai Mobis
• IBM / Red Hat
• Infineon Technologies
• INTEGRITY Security Services
• Intel
• Inverted AI
• Jama Software
• Jfrog
• Karamba Security
• Kaspersky
• LG Electronics
• Lynx Software Technologies
• MathWorks
• Mend.io
• Mercedes-Benz
• Microsoft / Azure
• Nissan Motor Co.
• NVIDIA
• NXP Semiconductors/ TTTech Auto
• Parallel Domain
• Perforce
• PTC
• Qualcomm
• QNX（division of BlackBerry Limited）
• Renesas Electronics
• Sibros
• Siemens / Altair
• Sonatus
• Sonotype
• Stellantis
• STMicroelectronics
• SUSE
• Synk
• Synopsys / Ansys
• Texas Instruments
• Thales
• Tier IV
• Tata Elxsi
• Triumph Group
• Upstream Security
• Vector Informatik
• VicOne
• Volkswagen / CARIAD
• Voxel51
• Wind River

執行摘要

汽車產業正經歷一場由技術進步驅動的重大變革，其中包括軟體定義汽車、電氣化、半自動駕駛汽車、聯網汽車平台和下一代通訊系統的興起。這些變革推動了對專用軟體和開發工具的需求，以建構、管理、維護和保護日益複雜的車輛架構。隨著硬體整合不斷推進，競爭對手紛紛轉向透過功能和服務實現差異化，軟體開發已成為原始設備製造商（OEM）的首要任務。隨著軟體定義汽車（SDV）時代的到來，汽車製造商和一級供應商都在迅速擴展其軟體能力和開發人才，以滿足下一代出行的需求。

汽車產業正從攻擊面有限的硬體定義車輛（HWD）向支援空中下載（OTA）更新的軟體定義車輛（SDV）轉型，後者面臨有線和無線安全風險。為了應對這些新的安全漏洞，汽車製造商及其供應商生態系統部署一系列符合 OEM 內部標準、政府法規和行業最佳實踐的網路安全解決方案，以確保車輛的安全可靠。

本報告涵蓋了物聯網和嵌入式作業系統、容器、虛擬機器管理程式、自動化軟體安全測試（ASST）、基於模型的系統工程（MBSE）工具、需求管理（RM）工具、軟體配置分析（SCA）、網路安全、邊緣人工智慧、DevSecOps/OTA、虛擬 ECU 和自動駕駛汽車檢驗等領域的軟體、開發和安全解決方案。

目錄

本報告內容

本報告探討的問題

本報告的目標受眾

本報告涵蓋的供應商

執行摘要

• 主要發現

世界市場概覽

依解決方案類型的預測

• 嵌入式作業系統
• 容器和虛擬機器管理程式解決方案
• 自動化軟體和系統測試工具
• 基於模型的系統工程
• 需求管理
• 軟體配置分析和安全測試工具
• 自主系統檢驗解決方案
• OTA/DevSecOps
• 邊緣人工智慧開發工具
• 虛擬ECU檢驗、原型製作和硬體在環（HiL）解決方案
• 汽車網路安全
  • 網路安全在軟體定義汽車中的作用
  • 促進汽車產業採用網路安全技術的法規
  • V2X 連接
  • 車內支付
  • 車輛充電
  • 應用程式和 API
  • 人工智慧在汽車網路安全中的作用
  • 後量子安全

近期市場趨勢

• 軟體定義汽車重塑汽車架構和風險。
• OEM廠商和供應商的軟體精簡揭露了SDV發展過程中遇到的難題。
• 收購、合作和市場策略轉變
  • Synopsys 收購 Ansys 有望打造一個從晶片到系統的平台。
  • Siemens以106億美元收購Altair Engineering
  • QNX 和 Vector 透過安全性和雲端整合來推進其基礎 SDV 平台的發展。
  • 其他合作關係
  • 其他收購和剝離
• 促進軟體開發工具和安全解決方案普及的法規。

競爭格局

供應商簡介

• AUMOVIO/Elektrobit/PlaxidityX
• HARMAN
• ETAS
• Foretellix
• Green Hills
• INTEGRITY Security Services.
• Kaspersky
• MathWorks
• QNX
• Red Hat
• Siemens
• Synopsys
• Vector Informatik
• Wind River

工程方面的考察

• Start-Ups在SDV生態系中扮演的角色日益重要
  • 現有技術公司和系統整合商的影響力下降。
• 下一波汽車創新浪潮
• 嵌入式安全軟體、硬體與FOTA實現
  • 工程計劃延誤原因分析
  • 遠端應用程式的採用率持續成長

關於作者

Inside this Report

The automotive industry is experiencing a wave of interest, investment, and innovation as vendors advance new platforms and capabilities to enable connected, electrified, increasingly automated, and software-defined vehicles. This report defines and evaluates the market for automotive software, development/deployment tools, and cybersecurity solutions, delivering both quantitative and qualitative insights into the forces driving change. It examines recent industry developments, shifting engineering requirements, and vendor strategies that are reshaping this rapidly evolving landscape.

What Questions are Addressed?

• As cybersecurity becomes a bigger concern and new standards are adopted in the automotive industry, how will vendors adapt?
• Which areas of software development will experience the most growth?
• Who are the leading suppliers in the industry, and what initiatives are they taking to ensure their future in the industry?
• What features and functions are consolidating in modern software development tools & platforms?
• Why are automotive software partnerships evolving to long-term strategic collaborations?
• Which technologies are OEMs investing in to secure the future of software-defined, autonomous, connected, and electrified vehicles?

Who Should Read this Report?

• CEO or other C-level executives
• Corporate development and M&A teams
• Marketing executives
• Business development and sales leaders
• Product development and product strategy leaders
• Channel management and channel strategy leaders

Organizations Listed in this Report

• Aeris
• Airbiquity / Karma Automotive
• Amazon / AWS
• Aptiv / Wind River
• Arm
• AUMOVIO /Elektrobit / PlaxidityX
• Aurora Labs
• AVL
• Block Harbor
• Broadcom / VMware
• BTC
• Cadence
• Canonical
• Cetitec (a Porsche company)
• Clearlake Capital
• COVESA / GENIVI
• Cybellum
• Dassault Systemes
• Deloitte
• dSPACE
• Eclipse Foundation
• Edge Impulse
• emlix
• ETAS (Bosch subsidiary)
• eSOL
• Excelfore
• Flexera
• Ford
• Foretellix
• GAIO Technology
• General Motors
• Green Hills Software
• HARMAN
• HPE
• Hyundai Mobis
• IBM / Red Hat
• Infineon Technologies
• INTEGRITY Security Services
• Intel
• Inverted AI
• Jama Software
• Jfrog
• Karamba Security
• Kaspersky
• LG Electronics
• Lynx Software Technologies
• MathWorks
• Mend.io
• Mercedes-Benz
• Microsoft / Azure
• Nissan Motor Co.
• NVIDIA
• NXP Semiconductors/ TTTech Auto
• Parallel Domain
• Perforce
• PTC
• Qualcomm
• QNX (division of BlackBerry Limited)
• Renesas Electronics
• Sibros
• Siemens / Altair
• Sonatus
• Sonotype
• Stellantis
• STMicroelectronics
• SUSE
• Synk
• Synopsys / Ansys
• Texas Instruments
• Thales
• Tier IV
• Tata Elxsi
• Triumph Group
• Upstream Security
• Vector Informatik
• VicOne
• Volkswagen / CARIAD
• Voxel51
• Wind River

Executive Summary

The automotive industry is undergoing a major transformation as advances in technology drive the rise of software-defined, electrified, semi-autonomous vehicles, connected car platforms, and next-generation communication systems. These changes are fueling demand for specialized software and development tools to build, manage, maintain, and secure increasingly complex vehicle architectures. As hardware consolidates and competition shifts toward differentiation through features and services, software development has become a central priority for OEMs. The era of the software-defined vehicle is now underway, with both automakers and Tier 1 suppliers rapidly expanding their software capabilities and scaling developer talent to meet the needs of next-generation mobility.

The automotive industry is transitioning from hardware-defined vehicles with limited attack surfaces to software-defined vehicles (SDVs) that support over-the-air (OTA) updates and include both wired and wireless security exposure. To address these new vulnerabilities, automakers and their supplier ecosystems are deploying a range of cybersecurity solutions that align with internal OEM standards, government regulations, and industry best practices to ensure safe and secure vehicles.

The report covers software, development and security solutions across IoT & embedded operating systems (OSs), containers, hypervisors, automated software & security testing (ASST), Model-based systems engineering tools (MBSE), requirements management tools (RM), software composition analysis (SCA), cybersecurity, Edge AI, DevSecOps/OTA, virtual ECUs, and autonomous vehicle verification.

Key Findings

• The rise of advanced driver-assistance systems (ADAS), software-defined vehicles (SDVs), and over-the-air (OTA) updates is accelerating the automotive software market, as OEMs strive to deliver rapid feature enhancements today while advancing toward autonomous and connected mobility.
• OEMs face a range of challenges in developing vehicle features, including macroeconomic pressures and shifting consumer demand, increasing system complexity, and high development costs.
• According to VDC's Voice of the Engineer survey, respondents indicated that the complexity of applications and technology is the leading factor for delays to automotive projects.
• The expansion of product portfolios through both internally developed solutions as well as collaborative partnerships will drive vendor differentiation within the SDV market, as engineers seek to consolidate toolsets and look for ease of integration.
• The growing use of AI in automotive software development and cybersecurity solutions will be essential not only for expediting SDV innovation and ensuring safety, but also for strengthening defenses against emerging AI-powered cybersecurity attacks.
• Regional and country-specific standards require OEMs and suppliers to integrate safety validation, threat modeling, secure coding, over-the-air update controls, and lifecycle risk management into their software development workflows.

Report Excerpt

The Next Wave of Automotive Innovation

Understanding evolving automotive market trends is critical to guiding the development of next-generation software architectures and cybersecurity solutions.As the complexity of SAE Level 3 and Level 4 systems expands within high-dependability environments, the implementation of an integrated and automated software toolchain becomes essential to ensure functional safety, system integrity, and regulatory compliance. Such a toolchain must enable model-based development, high-fidelity simulation, continuous integration and deployment (CI/CD), and comprehensive validation and cybersecurity assurance throughout the vehicle's. To help alleviate this growing complexity, software tool vendors should deliver interoperable platforms and open solutions that integrate with other vendors and tier suppliers across the automotive supply chain, fostering greater collaboration, efficiency, and system-level optimization.

Furthermore, interest in ADAS and AD sensing technologies remains strong, with 31% of respondents highlighting image sensors, 28.6% citing LiDAR sensors, and 23.8% identifying radar sensors as key areas of interest. To enable multi-sensor systems, 21.4% of respondents pointed to sensor fusion ECUs as an important supporting technology. The integration of these sensing modalities, coupled with advanced fusion algorithms, is critical for delivering the high-resolution, real-time environmental perception required for both ADAS and higher-level autonomous driving functions. As vehicles adopt increasingly complex sensor suites, robust hardware security architectures, testing, and verification processes can play a critical role in ensuring seamless system and software interoperability, consistent performance, and the reliability needed to meet safety-critical regulatory demands.

Although Vehicle-to-Everything (V2X) technology has yet to achieve mainstream adoption, surveyed automotive engineers identified Vehicle-to-Infrastructure (V2I) at 26.2% and Vehicle-to-Vehicle (V2V) at 23.8% as key areas of focus [see Exhibit 20]. V2I, V2V, and broader V2X capabilities enhance vehicle safety and situational awareness by enabling data exchange beyond the line of sight and range limitations of onboard sensors.

To address the security implications of this connectivity, cybersecurity vendors must develop protection layers specifically designed to safeguard V2X safety communications. As semi-autonomous and fully autonomous vehicles continue to mature, these vendors should prioritize automotive-specific protection mechanisms that preserve safety-critical operations even during cyberattacks or system malfunctions, unlike traditional IT security measures that may simply isolate or shut down affected systems.

OEMs, aiming to control costs and comply with varying regional regulations, are likely to concentrate on developing fundamental in-house protections while relying on specialized vendors for advanced or system-level defenses. This evolution underscores the need for cybersecurity providers to tailor their offerings to emerging SDV architectures, the unique vulnerabilities these systems introduce while ensuring compliance with diverse regulatory frameworks.

As cybersecurity becomes more deeply integrated into the SDV software lifecycle, collaboration between OEMs, Tier 1 suppliers, and software vendors will be essential to maintain compliance, streamline development, and ensure continuous protection throughout the vehicle's operational lifespan. Effective coordination across the supply chain, supported by standardized frameworks, shared threat intelligence, and interoperable toolchains, will be critical to managing risk and enabling secure innovation at scale.

Table of Contents

Inside this Report

What Questions are Addressed?

Who Should Read this Report?

Organizations Listed in this Report

Executive Summary

• Key Findings

Global Market Overview

Forecast by Solution Type

• Embedded Operating Systems
• Container & Hypervisor Solutions
• Automated Software and System Testing Tools
• Model-Based Systems Engineering
• Requirements Management
• Software Composition Analysis & Security Test Tools
• Autonomous Systems Verification Solutions
• OTA/DevSecOps
• Edge AI Development Tools
• Virtual ECU Validation, Prototyping & HiL Solutions
• Automotive Cybersecurity
  • Cybersecurity's Role in the Software-Defined Vehicle
  • Regulations Driving Automotive Cybersecurity Adoption
  • V2X Connectivity
  • In-Car Payments
  • Vehicle Charging
  • Apps & APIs
  • The Role of Artificial Intelligence in Automotive Cybersecurity
  • Post-Quantum Security

Recent Market Developments

• Software-Defined Vehicles Reshape Automotive Architecture and Risk
• Software Cuts at OEMs and Suppliers Expose SDV Growing Pains
• Acquisitions, Partnerships and Market Pivots
  • Synopsys Ansys Acquisition to Create a Silicon-to-Systems Platform
  • Siemens' $10.6B Move for Altair Engineering
  • QNX and Vector Advance Foundational SDV Platform with Safety and Cloud Integration
  • Other Partnerships & Collaborations
  • Other Acquisitions & Divestitures
• Regulations Driving Software Development Tool and Security Solutions Adoption

Competitive Landscape

Vendor Profiles

• AUMOVIO/Elektrobit/PlaxidityX
• HARMAN
• ETAS
• Foretellix
• Green Hills
• INTEGRITY Security Services.
• Kaspersky
• MathWorks
• QNX
• Red Hat
• Siemens
• Synopsys
• Vector Informatik
• Wind River

Engineering Insights

• The Expanding Role of Startups in the SDV Ecosystem
  • Diminishing Influence of Established Tech and System Integrators
• The Next Wave of Automotive Innovation
• Implementation of Embedded Security Software, Hardware, and FOTA
  • Attributions of Delays in Engineering Projects
  • Sustained Increases in Remote Application Deployments

About the Authors

List of Exhibits

• Exhibit 1:Global Revenue of Automotive Software Development & Security Solutions, by Type
• Exhibit 2:Global Portion of Automotive Software Development & Security Solutions, by Type Market
• Exhibit 3:Global Revenue of Automotive IoT & Embedded OS
• Exhibit 4:Current & Expected Primary OS in Automotive Projects, by OS Source
• Exhibit 5:Global Revenue of Automotive Hypervisor & Container Solutions
• Exhibit 6:Global Revenue for Automotive Automated Software & System Testing Tools
• Exhibit 7:Global Revenue for Automotive Model Based Systems Engineering Tools
• Exhibit 8:Global Revenue for Automotive Requirements Management Solutions
• Exhibit 9:Global Revenue for Automotive Software Composition Analysis & Security Test Tools
• Exhibit 10:Global Revenue for Automotive Autonomous System Verification Solutions
• Exhibit 11:Global Revenue for Automotive OTA & DevSecOps Solutions
• Exhibit 12:Global Revenue for Automotive Edge AI Development Tools
• Exhibit 13:Global Revenue for Virtual ECU Validation, Prototyping & HiL Solutions
• Exhibit 14:Global Revenue of Automotive Cybersecurity Solutions & Services
• Exhibit 15:Global Share of Automotive Software & Security Solutions by Leading Vendors, 2024 & 2025
• Exhibit 16:Global Share of Automotive OS, Containers & Hypervisors by Leading Vendors, by Vertical, 2024 & 2025
• Exhibit 17:Global Share of Automotive ASST, MBSE, & SCA Solutions by Leading Vendors, by Vertical, 2024 & 2025
• Exhibit 18:Global Share of Automotive Autonomous System Verification, OTA/DevSecOps, Edge AI, & vECU Solutions by Leading Vendors, by Vertical, 2024 & 2025
• Exhibit 19:Current Major Competition in the Software-Defined Space
• Exhibit 20:Technologies Automotive Respondent's Organization is Most Interested in and/or Building for Future Customers
• Exhibit 21:Use of Embedded Security Software, Hardware, & Firmware-Over-the-Air Updating in Current Automotive Projects vs. Overall IoT Projects
• Exhibit 22:Attributions of Delays to Automotive Projects
• Exhibit 23:Current Use of Remote Deployment & Management by Vertical Market