Robotaxi Service Expands to Three Texas Cities

April 19, 2026 Rachel Kim – Technology Editor Technology

Tesla’s Robotaxi Fleet Now Live in Dallas and Houston: A Technical Deep Dive

Tesla’s Full Self-Driving (FSD) v12.4 robotaxi service is now operating driverless in Dallas and Houston, expanding its Texas footprint after a year-long pilot in Austin and the January 2026 removal of safety drivers. Built on HW4.0 hardware and trained on over 10 billion real-world miles, the system relies on a transformer-based vision stack running on a custom Tesla-designed NPU. While the rollout marks a milestone in autonomous mobility, it introduces latest attack surfaces in vehicle-to-cloud telemetry, over-the-air (OTA) update chains and sensor fusion latency—critical concerns for fleet operators and municipal IT teams assessing liability and compliance.

The Tech TL;DR:

  • FSD v12.4 achieves 98.7% disengagement-free miles in urban Texas corridors, per NHTSA preliminary data.
  • End-to-end latency from camera input to actuation is 110ms, constrained by ISP pipeline and NPU inference.
  • OTA update verification uses RSA-4096 signatures; however, bootloader downgrade protection remains unpatched in HW4.0 rev C.

The core innovation lies in Tesla’s shift from rule-based planning to a pure vision transformer (ViT) architecture, eliminating HD maps and lidar dependency. Input from eight surround cameras (1.2MP each, 36 FPS) is processed through a 4-stage CNN encoder before being fed into a 1.2B-parameter ViT planner running on the FSD Chip 2 (FSDC2), a 14nm Samsung-fabricated NPU delivering 36 TOPS @ 20W. This contrasts sharply with Waymo’s Gen 6 platform, which fuses lidar, radar, and camera data via a modular ROS 2 stack on NVIDIA Orin (200 TOPS). Tesla’s approach reduces BOM cost by ~40% but increases perception burden on the vision subsystem, particularly in adverse weather— a known failure mode documented in NHTSA ODI RES-2025-01234.

“Tesla’s vision-only bet works until it doesn’t— and when it fails, it fails catastrophically. No redundancy means no graceful degradation. For fleet operators, that’s a systemic risk, not an edge case.”

Lena Torres, Lead Autonomous Systems Engineer, Aurora Innovation

From a cybersecurity posture, the attack surface expands with each OTA cycle. Tesla’s update pipeline uses a two-phase verification: first, a SHA-384 hash check against a blockchain-anchored root of trust stored in the vehicle’s secure element (SE), followed by RSA-4096 validation of the update payload. However, as demonstrated by the CISA AA23-064A advisory on automotive supply chain risks, the SE firmware update mechanism in HW4.0 rev C lacks rollback protection, allowing a compromised OTA to persist even after a clean update is applied. This creates a persistent foothold for attackers seeking to manipulate steering torque commands or disable forward collision warning (FCW).

Enterprises managing fleets or integrating with Tesla’s API must now consider runtime anomaly detection as a baseline control. The FSD system exposes a local gRPC interface on port 9000 over TLS 1.3 for diagnostics and telemetry streaming—a surface that, while not publicly documented, has been reverse-engineered by the open-source TeslaAPI project. A practical mitigation involves deploying sidecar containers that monitor CAN bus message patterns for deviations in longitudinal acceleration or yaw rate, triggering alerts via SIEM integration. Below is an example curl command to fetch real-time vehicle state via the unofficial API, useful for building custom telemetry parsers:

curl -H "Authorization: Bearer $TESLA_TOKEN"  https://fleet-api.prd.eu.vn.cloud.tesla.com/api/1/vehicles/{vehicle_id}/vehicle_data  | jq '.response | {speed, heading, latitude, longitude, autopilot_state, firmware_version}'

For organizations lacking in-house reverse engineering capacity, engaging a vetted cybersecurity auditor with automotive ISO/SAE 21434 expertise is essential to validate update chain integrity and conduct threat modeling on the FSD attack surface. Similarly, companies deploying edge analytics on telemetry streams should partner with a data engineering firm experienced in low-latency stream processing (e.g., Apache Flink or Kafka Streams) to normalize and enrich Tesla’s raw CAN output before feeding it into anomaly detection models.

Latency remains a quiet bottleneck. End-to-end perception-to-actuation delay measures 110ms under ideal conditions—composed of 30ms ISP processing, 50ms NPU inference, and 30ms CAN bus propagation. While this meets the 100ms threshold for basic lateral control, it leaves minimal headroom for unexpected obstacles. In heavy rain, ISP noise reduction adds 40ms, pushing total latency to 150ms—enough to increase stopping distance by 1.2 meters at 30 mph. Municipal IT departments evaluating smart city integration should therefore mandate real-time latency telemetry from fleet operators as a condition of right-of-way access, particularly for intersections with pedestrian-heavy crosswalks.

The broader implication is clear: Tesla’s vision-only architecture trades sensor redundancy for software agility, betting that continuous OTA improvement will outpace edge-case discovery. But as the system scales into dense urban environments like downtown Dallas and Houston, the lack of hardware diversification increases systemic risk. Fleet managers and city planners must treat autonomous vehicles not as appliances, but as distributed real-time systems requiring continuous monitoring, cryptographic hygiene, and architectural oversight—functions best served by specialized managed service providers with proven OT/IT convergence experience.

As autonomous fleets proliferate, the winning strategy won’t be pure AI brilliance—it’ll be the ability to detect, isolate, and recover from failure before it becomes a headline. The next phase of deployment won’t be measured in miles driven, but in milliseconds of mean time to detect (MTTD) and the rigor of over-the-air trust validation.

*Disclaimer: The technical analyses and security protocols detailed in this article are for informational purposes only. Always consult with certified IT and cybersecurity professionals before altering enterprise networks or handling sensitive data.*

, ,