Configuration-Driven OTA Firmware Update Orchestration for Scalable ECU Management in Software-Defined Vehicles

Authors

  • Utkarsh Kumar

Keywords:

Over-the-air update, ECU firmware, Software-defined vehicle, YAML configuration, UDS diagnostics, DoIP, FreeRTOS, RTOS, Automotive cybersecurity, Bootloader orchestration

Abstract

The rapid proliferation of electronic control units (ECUs) in modern software-defined vehicles has fundamentally transformed how automotive manufacturers deliver and manage software functionality. Over-the-air (OTA) firmware update mechanisms have emerged as a critical infrastructure component enabling remote diagnostics, feature additions, and security patching without physical dealer intervention. However, the heterogeneous nature of ECU bootloader strategies, memory architectures, and security access requirements imposes significant engineering complexity on scalable OTA orchestration. This paper presents a configuration-driven OTA firmware update orchestration framework in which ECU-specific update sequences are encoded in YAML-defined configuration schemas, eliminating hard-coded, device-specific C implementations that impede fleet scalability. The proposed architecture decouples update logic from ECU hardware specifics by centralizing policy definitions within cloud-managed configuration payloads, enabling dynamic enumeration, firmware validation, and post-update verification across distributed ECU networks. A key contribution of the framework is its cloud-initiated ECU authentication mechanism, wherein firmware-side validation sequences are dynamically triggered upon cloud requests, transmitting verified inventory data to ensure vehicle authenticity prior to update execution. The framework leverages Unified Diagnostic Services (UDS) over CAN and Ethernet (DoIP) for diagnostic session management and memory transfer operations, and integrates with RTOS task scheduling to maintain deterministic update progression across any real-time platform, including but not limited to FreeRTOS-based and microcontroller environments. Experimental evaluation demonstrates significant improvements in update orchestration scalability, reduction in integration overhead, and consistent maintenance of firmware rollback safety guarantees across heterogeneous ECU populations. The results establish a principled foundation for scalable, maintainable OTA infrastructure in next-generation software-defined vehicle platforms.

Downloads

Download data is not yet available.

References

A. Bazzi, A. Shaout, and D. Ma, "A novel variability-rich scheme for software updates of automotive systems," IEEE Access, vol. 12, pp. 1–17, 2024. [Online]. Available: https://ieeexplore.ieee.org/document/10547264

D. F. Blanco, F. Le Mouël, T. Lin, and M.-P. Escudié, "A comprehensive survey on software as a service (SaaS) transformation for the automotive systems," IEEE Access, vol. 11, pp. 56789–56812, 2023. [Online]. Available: https://ieeexplore.ieee.org/document/10177956

K. Agrawal et al., "Advancing software-defined vehicles: an end-to-end framework with digital twin based attestation for OTA updates," in Proc. 17th Int. Conf. COMmunication Systems and NETworks (COMSNETS), 2025, pp. 1–6. [Online]. Available: https://ieeexplore.ieee.org/document/10885560

H. Kim and S. Jeon, "Multi-factor authentication for in-vehicle secure OTA protocol," IEEE Access, vol. 13, pp. 1–14, 2025. [Online]. Available: https://ieeexplore.ieee.org/document/11283032

A. Shoker, F. Alves, and P. Esteves-Verissimo, "ScaIOTA: scalable secure over-the-air software updates for vehicles," in Proc. 42nd Int. Symp. Reliable Distributed Systems (SRDS), 2023, pp. 1–12. [Online]. Available: https://ieeexplore.ieee.org/document/10419279

A. Nasr, M. Ghoneima, and B. A. Abdullah, "Automotive software self reprogramming OTA," in Proc. 13th Int. Conf. Electrical Engineering (ICEENG), 2022, pp. 1–6. [Online]. Available: https://ieeexplore.ieee.org/document/9781935

S. Yeasmin and A. Haque, "A multi-factor authenticated blockchain-based OTA update framework for connected autonomous vehicles," in Proc. IEEE 94th Vehicular Technology Conf. (VTC2021-Fall), 2021, pp. 1–5. [Online]. Available: https://ieeexplore.ieee.org/document/9625372

R. Lu et al., "LigSecOTA: lightweight over-the-air (OTA) software updates with integrated security," IEEE Transactions on Dependable and Secure Computing, vol. 23, no. 2, pp. 1–15, 2026. [Online]. Available: https://ieeexplore.ieee.org/document/11303932

B. Li et al., "Over-the-air upgrading for enhancing security of intelligent connected vehicles: a survey," Artificial Intelligence Review, vol. 57, pp. 1–48, 2024. [Online]. Available: https://doi.org/10.1007/s10462-024-10968-z

G. A. Thomaz et al., "End-to-end trusted computing architecture for vehicular over-the-air updates," Annals of Telecommunications, vol. 80, pp. 1–18, 2025. [Online]. Available: https://doi.org/10.1007/s12243-025-01096-y

J. Chung, S. Park, and S. Hong, "Design of an automotive OTA system with zonal gateways and PQC-hybrid TLS," in Proc. IEEE/IEIE Int. Conf. Consumer Electronics-Asia (ICCE-Asia), 2025, pp. 1–4. [Online]. Available: https://ieeexplore.ieee.org/document/11263681

W. Badawy, "Integrating EDF-PI scheduling with TDMA-CAN for reliable fault-tolerant real-time embedded systems," in Proc. 12th Int. Conf. Intelligent Computing and Information Systems (ICICIS), 2025, pp. 1–6. [Online]. Available: https://ieeexplore.ieee.org/document/11313207

J. Henle, M. Stoffel, M. Schindewolf, A.-T. Nägele, and E. Sax, "Architecture platforms for future vehicles: a comparison of ROS2 and Adaptive AUTOSAR," in Proc. IEEE 25th Int. Conf. Intelligent Transportation Systems (ITSC), 2022, pp. 1–6. [Online]. Available: https://ieeexplore.ieee.org/document/9921894

S. H. Lim et al., "An eBPF/XDP-based architecture for efficient SOME/IP service discovery," in Proc. 11th Int. Conf. Mechatronics and Robotics Engineering (ICMRE), 2025, pp. 1–5. [Online]. Available: https://ieeexplore.ieee.org/document/10976318

H. Menal and M. Imdad, "Analyzing the operational gaps in SAFUA: simulation-based evaluation of secure automotive firmware update protocols," in Proc. 27th Int. Multitopic Conf. (INMIC), 2025, pp. 1–5. [Online]. Available: https://ieeexplore.ieee.org/document/11348613

Downloads

Published

23.05.2026

How to Cite

Utkarsh Kumar. (2026). Configuration-Driven OTA Firmware Update Orchestration for Scalable ECU Management in Software-Defined Vehicles. International Journal of Intelligent Systems and Applications in Engineering, 14(1s), 1103–1113. Retrieved from https://www.ijisae.org/index.php/IJISAE/article/view/8312

Issue

Vol. 14 No. 1s (2026)

Section

Research Article

License

Creative Commons License

This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License.

All papers should be submitted electronically. All submitted manuscripts must be original work that is not under submission at another journal or under consideration for publication in another form, such as a monograph or chapter of a book. Authors of submitted papers are obligated not to submit their paper for publication elsewhere until an editorial decision is rendered on their submission. Further, authors of accepted papers are prohibited from publishing the results in other publications that appear before the paper is published in the Journal unless they receive approval for doing so from the Editor-In-Chief.

IJISAE open access articles are licensed under a Creative Commons Attribution-ShareAlike 4.0 International License. This license lets the audience to give appropriate credit, provide a link to the license, and indicate if changes were made and if they remix, transform, or build upon the material, they must distribute contributions under the same license as the original.