While Android and open source software not-so-quietly revolutionized the mobile industry, Enterprise IT organizations have taken notice. “The consumerization of IT” and ubiquity of mobile devices are forcing a transformation of Enterprise IT infrastructures, something that Geoffrey Moore refers to as “Systems of Record” and “Systems of Engagement.” These new infrastructures will be built largely with open source components. But whether developing a new device or new IT infrastructure, development with open source software is not business as usual. Choosing and modifying components from external sources, integrating with proprietary code, evaluating licenses and community viability, etc., require new processes for choosing components and new ways of providing control and visibility.
In this presentation Peter Vescuso will discuss the issues of OEM development with Android and open source, where and how it impacts Enterprise IT, and for both how to provide the control and visibility required by management while giving developers the freedom they need to create and innovate.
Presentation on how to chat with PDF using ChatGPT code interpreter
Android for the Enterprise and OEMs
1. Android for the Enterprise and OEMs Peter Vescuso Black Duck Software
2. About Black Duck SoftwareBuild better software faster by automating and managing the acquisition and governance of open source OSS info, e.g. GitHub, Maven, … KnowledgeBase Governance Approve Catalog Validate Acquire Monitor Plan Code Build Release Test
8. Devices Open Source as the Foundation for Mobility Infrastructure Front End Security Development Open SSL Open SSH Memcached Open LDAP Glassfish Back End
9. OSS and IT Infrastructure: Benefits and Challenges with Open Source “Open source is ubiquitous, it’s unavoidable….having a policy against open source is impractical and places you at a competitive disadvantage” Key Benefits Flexibility Modify, mix, reuse code Innovation Leverage OSS and community Cost Optimization Reduce or eliminate acquisition costs Challenges Technical Failure Operational exposure Needs to be audited, managed Security Risks Business exposure IP Risks Legal exposure Source: Mark Driver, Gartner Group, November 2010
10. Complexity for OEMs/Device Manufacturers Components and code from many suppliers Need to control and manage building software on a rapidly changing O/S Multiple releases per year Customize Android for: The type of device (phone, tablet, TV, etc.) Device drivers, power consumption, etc. User experience Do it all while ensuring compliance
11. Android & Vendor Innovation Developers Typical areas of vendor/developer innovation Source: Google - //source.android.com/
12. Software Package Data Exchange™ (SPDX™) Working group of the Linux Foundation Charter: Create data exchange standards to enable license and component information sharing (metadata) Participation from over 16 organizations including software, systems and tool vendors, consultants and foundations “SPDX is a crucial building block in an industry-wide system of automated license compliance administration” Eben Moglen, SFLC
13. Enabling Developer Freedom (with Visibility and Control) Strategy Articulate the business objectives for use of OSS Policy & Process OSS policy & management process Training & Technology Automate governance and compliance Design-in and automate policies
20. Support - optional commercial support from credativFor organizations that want to implement a governance solution quickly and increase sophistication and capability over time.
21. Summary Android has revolutionized the mobile and device landscape Enterprise infrastructure is adapting to “Systems of Engagement,” open source is key enabler Developers need freedom to use the best code, Management needs visibility and control Solution requires training, tools, and processes
Notes de l'éditeur
CPU: dual core, 1 GHZ or betterRam: 1GBStorage: 16, 32 GBCamera/Video: 8 mp , 1080p HD videoAll for < $299
Gartner Group ‘s lead analyst on open source, Mark Driver (data in the slide is from November 2010), summarized the benefits and key challenges of using FOSS.In addition, Mark has commented on the ubiquity of open source, that it is unavoidable and should be embraced as part of normal development process. Mark also made the following predictions:-- By 2016, OSS will be included in mission-critical software portfolios within 99% of Global 2000 enterprises, up from 75% in 2010.-- By 2014, 50% of Global 2000 organizations will experience technology, cost and security challenges through lack of open-source governance.
This is the Google Android Architecture diagramRun time on virtual machine External components like webkit and SSLApplication developers and device manufacturer will innovate at different places in the architecture as indicated by the yellow dots.Device Manufactures will modify lower in the architectureThe issue is depending on what you change, and what license the component is licensed under will dictate a set of obligations.
StrategyA strategy articulates the business objectives for using FOSSMost companies do not have a documented strategy. It’s an important tool for establishing consensus and communicating business rationale behind policies.Without a strategy, FOSS program is largely reactivePolicy & ProcessPolicy are the “rules” for using FOSSProcess is the way Policy is reliably realized on a day-to-day basisTechnology Automates the key processes for effective management and governance, allows organizations to “design in” compliance