SlideShare une entreprise Scribd logo

Open Source Governance for your Organization

Robert Sutor
Robert Sutor

Some guidelines on how to incorporate governance of open source software into your business or organization. Presented at the 2011 NASA Open Source Summit. http://www.nasa.gov/open/source/

Technologie
1  sur  13
Télécharger pour lire hors ligne
Bob Sutor – VP, Open Systems Strategy 29 March, 2011 Open Source Governance for your Organization © 2011 IBM Corporation
Before we get started ! Per my website: The content on this site is my own and does not necessarily represent my employer’s positions, strategies or opinions. ! http://www.sutor.com ! This discussion does not constitute legal advice. ! I’m not an attorney, and certainly not an intellectual property attorney, and you should consult one as necessary. 2 29 March 2011 Bob Sutor - Open Source Governance for your Organization © 2011 IBM Corporation
The key question Do you have proper legal controls and business processes in place to deal with open source software? 3 29 March 2011 Bob Sutor - Open Source Governance for your Organization © 2011 IBM Corporation
Your open source governance strategy ! Five years ago, it was not uncommon for that strategy to be defined as “you shall use no open source software.” ! You need to understand the legal risks and responsibilities for any software you use, and weigh those against the business value. ! Work out a plan that specifies what business and legal controls are in place to approve use of open source in your organization or in your products, and make sure you have a well defined escalation path. 4 29 March 2011 Bob Sutor - Open Source Governance for your Organization © 2011 IBM Corporation
What you need to know ! All projects to which your employees or organizational members contribute, the free and open source licenses being used, and the intellectual property commitments those contributions make upon your company or organization. ! All use of open source code within internal processes, product development, and services engagements. 5 29 March 2011 Bob Sutor - Open Source Governance for your Organization © 2011 IBM Corporation
What you need to know ! All open source code that goes into your hardware products, software products, web-delivered services, or are given to your customers as part of consulting and services engagements. ! The location of all open source code repositories used in development, with strict rules about what code with which licenses can be combined (or not). 6 29 March 2011 Bob Sutor - Open Source Governance for your Organization © 2011 IBM Corporation
What you then need to put in place ! Uniform cross-organizational rules and policies about the use of open source, with the ability to audit adherence. ! Tools to determine code provenance: from which original bodies of open source code did your current codebase derive? ! Balanced policies to weigh the business and legal benefits and risks in using open source code. 7 29 March 2011 Bob Sutor - Open Source Governance for your Organization © 2011 IBM Corporation
What you then need to put in place ! Education for all employees and contractors, with special sections appropriate for users, contributors, developers, and distributors of open source code. ! Clear processes defining when decisions about open source can be made locally and when they must be made centrally, with paths for escalating decisions going up both the executive and legal chains. ! An aggressive policy for contributing to the various open source communities from which you benefit in your company or organization. 8 29 March 2011 Bob Sutor - Open Source Governance for your Organization © 2011 IBM Corporation
The IBM experience ! Ten+ years contributing to and leading hundreds of open source projects in efforts such as Linux, Eclipse, and Apache. ! An internal governance process embodied within the Open Source Steering Committee (OSSC), with the set of rules now in their third generation in the last decade. ! The OSSC reviews all IBM external activities involving Open Source including – Starting a new OSS community/project – Contributing to an existing OSS community – Using OSS in IBM products or services – Distributing reference implementations or OSS modifications – Redistributing (OEM or Resell) vendor products containing OSS 9 29 March 2011 Bob Sutor - Open Source Governance for your Organization © 2011 IBM Corporation
Use of open source has grown ! We have seen proposals to the OSSC grow steadily. ! The proposals fall into 3 categories – Already evaluated and approved for use – Meets well-defined criteria and a centralized committee can handle – Complex or original scenarios that are best decided by top of the business ! The governance process continues to evolve – Scalability: handle increase in the number proposals – Delegation: allow business units to drive majority of decisions – Economy: don’t spend money on people and resources to answer questions to which you already know the answers. 10 29 March 2011 Bob Sutor - Open Source Governance for your Organization © 2011 IBM Corporation
Some lessons learned ! We were worried about code quality but we shouldn’t have been. ! We gained a better understanding of the open source domain – Copyright and patent complexities – License terms and conditions – Usual lack of warranty ! We learned to balanced open and proprietary. 11 29 March 2011 Bob Sutor - Open Source Governance for your Organization © 2011 IBM Corporation
Some lessons learned ! We gained a better understanding of the value of open source – How to leverage it in what we do – How and where to contribute – How to work well in open source communities ! We learned to manage the risks. ! We learned it is important to have clear business and strategic reasons for using open source 12 29 March 2011 Bob Sutor - Open Source Governance for your Organization © 2011 IBM Corporation
Final thoughts ! Develop your open source policy collaboratively among your business, technical, and legal experts, don’t dictate it. ! Education is key for employee and contractor compliance. ! Establish clear policy for what employees can and cannot do with open source in their spare time. ! Consider using code pedigree and scanning services from companies such as Black Duck, OpenLogic, and Palamida. ! Know where handling open source needs to be the same as closed source, and where it needs to be different. ! Plan to iterate on and refine your policy yearly for the first few years. 13 29 March 2011 Bob Sutor - Open Source Governance for your Organization © 2011 IBM Corporation

Recommandé

5 mistakes to avoid when creating a mobile app
5 mistakes to avoid when creating a mobile app5 mistakes to avoid when creating a mobile app
5 mistakes to avoid when creating a mobile appRobert Sutor
 
IBM Mobile Strategy - Mobile World Congress 2012
IBM Mobile Strategy - Mobile World Congress 2012IBM Mobile Strategy - Mobile World Congress 2012
IBM Mobile Strategy - Mobile World Congress 2012Robert Sutor
 
How technology can enhance the non-profit organization: What it can do for y...
How technology can enhance the non-profit organization: What it can do for y...How technology can enhance the non-profit organization: What it can do for y...
How technology can enhance the non-profit organization: What it can do for y...University of Calgary
 
How Open Source Can Help Your Startup
How Open Source Can Help Your StartupHow Open Source Can Help Your Startup
How Open Source Can Help Your StartupFéchnel Michel, JD
 
Grass Roots Developer Evangelism by Paul Pajo | DevCon Summit 2015 #GoOpenSou...
Grass Roots Developer Evangelism by Paul Pajo | DevCon Summit 2015 #GoOpenSou...Grass Roots Developer Evangelism by Paul Pajo | DevCon Summit 2015 #GoOpenSou...
Grass Roots Developer Evangelism by Paul Pajo | DevCon Summit 2015 #GoOpenSou...DEVCON
 
Video on demand for worship
Video on demand for worshipVideo on demand for worship
Video on demand for worshipAndrew Lemert
 
Career in Software Development
Career in Software Development Career in Software Development
Career in Software Development neosphere
 
From Eureka to Successful Innovation
From Eureka to Successful InnovationFrom Eureka to Successful Innovation
From Eureka to Successful InnovationFredrik Johansson
 

Recommandé

5 mistakes to avoid when creating a mobile app
5 mistakes to avoid when creating a mobile app5 mistakes to avoid when creating a mobile app
5 mistakes to avoid when creating a mobile appRobert Sutor
 
IBM Mobile Strategy - Mobile World Congress 2012
IBM Mobile Strategy - Mobile World Congress 2012IBM Mobile Strategy - Mobile World Congress 2012
IBM Mobile Strategy - Mobile World Congress 2012Robert Sutor
 
How technology can enhance the non-profit organization: What it can do for y...
How technology can enhance the non-profit organization: What it can do for y...How technology can enhance the non-profit organization: What it can do for y...
How technology can enhance the non-profit organization: What it can do for y...University of Calgary
 
How Open Source Can Help Your Startup
How Open Source Can Help Your StartupHow Open Source Can Help Your Startup
How Open Source Can Help Your StartupFéchnel Michel, JD
 
Grass Roots Developer Evangelism by Paul Pajo | DevCon Summit 2015 #GoOpenSou...
Grass Roots Developer Evangelism by Paul Pajo | DevCon Summit 2015 #GoOpenSou...Grass Roots Developer Evangelism by Paul Pajo | DevCon Summit 2015 #GoOpenSou...
Grass Roots Developer Evangelism by Paul Pajo | DevCon Summit 2015 #GoOpenSou...DEVCON
 
Video on demand for worship
Video on demand for worshipVideo on demand for worship
Video on demand for worshipAndrew Lemert
 
Career in Software Development
Career in Software Development Career in Software Development
Career in Software Development neosphere
 
From Eureka to Successful Innovation
From Eureka to Successful InnovationFrom Eureka to Successful Innovation
From Eureka to Successful InnovationFredrik Johansson
 
Mobile Testing: Challenges and Solutions
Mobile Testing: Challenges and SolutionsMobile Testing: Challenges and Solutions
Mobile Testing: Challenges and SolutionsTechWell
 
Creativity & Innovation
Creativity & InnovationCreativity & Innovation
Creativity & InnovationNeha Nagulkar Ghorad
 
Adventures on the Road to Enterprise Virtual Assistants
Adventures on the Road to Enterprise Virtual AssistantsAdventures on the Road to Enterprise Virtual Assistants
Adventures on the Road to Enterprise Virtual AssistantsEditt Gonen-Friedman
 
Mobile Web Performance Optimization 1-7-14
Mobile Web Performance Optimization 1-7-14Mobile Web Performance Optimization 1-7-14
Mobile Web Performance Optimization 1-7-14XBOSoft
 
UXPA2019 Enhancing the User Experience for People with Disabilities: Top 10 ...
UXPA2019 Enhancing the User Experience for People with Disabilities: Top 10 ...UXPA2019 Enhancing the User Experience for People with Disabilities: Top 10 ...
UXPA2019 Enhancing the User Experience for People with Disabilities: Top 10 ...UXPA International
 
Senscape for mo mo bj 530
Senscape for mo mo bj 530Senscape for mo mo bj 530
Senscape for mo mo bj 530momobeijing
 
4th blog post
4th blog post4th blog post
4th blog postcstaten35
 
Using Technology to Make People More Powerful
Using Technology to Make People More PowerfulUsing Technology to Make People More Powerful
Using Technology to Make People More PowerfulIan Heron
 
Top10 techno
Top10 technoTop10 techno
Top10 technomadhuripallod
 
Embedded Development - to Fit the Unique Needs of Enterprises Around the Globe
Embedded Development - to Fit the Unique Needs of Enterprises Around the GlobeEmbedded Development - to Fit the Unique Needs of Enterprises Around the Globe
Embedded Development - to Fit the Unique Needs of Enterprises Around the GlobeTizbi, Inc.
 
What is new about javaspace?
What is new about javaspace?What is new about javaspace?
What is new about javaspace?nishajj
 
Kaspars Petersons - BYOD - more like BYOP
Kaspars Petersons - BYOD - more like BYOPKaspars Petersons - BYOD - more like BYOP
Kaspars Petersons - BYOD - more like BYOPDevConFu
 
Future of IT preso
Future of IT presoFuture of IT preso
Future of IT presoLorna Garey
 
10 Reasons To Use Open Source Software-Defined Networking
10 Reasons To Use Open Source Software-Defined Networking10 Reasons To Use Open Source Software-Defined Networking
10 Reasons To Use Open Source Software-Defined NetworkingVala Afshar
 
"Work like a startup!" a.k.a. building an internal venture in a big company
"Work like a startup!" a.k.a. building an internal venture in a big company"Work like a startup!" a.k.a. building an internal venture in a big company
"Work like a startup!" a.k.a. building an internal venture in a big companyHarri Kiljander
 
Can a lean startup be built inside a large company?
Can a lean startup be built inside a large company?Can a lean startup be built inside a large company?
Can a lean startup be built inside a large company?Harri Kiljander
 
The future of technology final project
The future of technology final projectThe future of technology final project
The future of technology final projectgmsalv02
 
Apple Study: 8 easy steps to beat Microsoft (and Google)
Apple Study: 8 easy steps to beat Microsoft (and Google)Apple Study: 8 easy steps to beat Microsoft (and Google)
Apple Study: 8 easy steps to beat Microsoft (and Google)Ouriel Ohayon
 
OpenChain Webinar 57 - The Open Source Initiative - 2023-11-27
OpenChain Webinar 57 - The Open Source Initiative - 2023-11-27OpenChain Webinar 57 - The Open Source Initiative - 2023-11-27
OpenChain Webinar 57 - The Open Source Initiative - 2023-11-27Shane Coughlan
 
Breaking Free from Proprietary Gravitational Pull
Breaking Free from Proprietary Gravitational PullBreaking Free from Proprietary Gravitational Pull
Breaking Free from Proprietary Gravitational PullGreat Wide Open
 
Practical Trademark Law for FOSS Projects
Practical Trademark Law for FOSS ProjectsPractical Trademark Law for FOSS Projects
Practical Trademark Law for FOSS ProjectsShane Curcuru
 
Managing Community Open Source Brands
Managing Community Open Source BrandsManaging Community Open Source Brands
Managing Community Open Source BrandsShane Curcuru
 

Contenu connexe

Tendances

Mobile Testing: Challenges and Solutions
Mobile Testing: Challenges and SolutionsMobile Testing: Challenges and Solutions
Mobile Testing: Challenges and SolutionsTechWell
 
Adventures on the Road to Enterprise Virtual Assistants
Adventures on the Road to Enterprise Virtual AssistantsAdventures on the Road to Enterprise Virtual Assistants
Adventures on the Road to Enterprise Virtual AssistantsEditt Gonen-Friedman
 
Mobile Web Performance Optimization 1-7-14
Mobile Web Performance Optimization 1-7-14Mobile Web Performance Optimization 1-7-14
Mobile Web Performance Optimization 1-7-14XBOSoft
 
UXPA2019 Enhancing the User Experience for People with Disabilities: Top 10 ...
UXPA2019 Enhancing the User Experience for People with Disabilities: Top 10 ...UXPA2019 Enhancing the User Experience for People with Disabilities: Top 10 ...
UXPA2019 Enhancing the User Experience for People with Disabilities: Top 10 ...UXPA International
 
Senscape for mo mo bj 530
Senscape for mo mo bj 530Senscape for mo mo bj 530
Senscape for mo mo bj 530momobeijing
 
4th blog post
4th blog post4th blog post
4th blog postcstaten35
 
Using Technology to Make People More Powerful
Using Technology to Make People More PowerfulUsing Technology to Make People More Powerful
Using Technology to Make People More PowerfulIan Heron
 
Embedded Development - to Fit the Unique Needs of Enterprises Around the Globe
Embedded Development - to Fit the Unique Needs of Enterprises Around the GlobeEmbedded Development - to Fit the Unique Needs of Enterprises Around the Globe
Embedded Development - to Fit the Unique Needs of Enterprises Around the GlobeTizbi, Inc.
 
What is new about javaspace?
What is new about javaspace?What is new about javaspace?
What is new about javaspace?nishajj
 
Kaspars Petersons - BYOD - more like BYOP
Kaspars Petersons - BYOD - more like BYOPKaspars Petersons - BYOD - more like BYOP
Kaspars Petersons - BYOD - more like BYOPDevConFu
 
Future of IT preso
Future of IT presoFuture of IT preso
Future of IT presoLorna Garey
 
10 Reasons To Use Open Source Software-Defined Networking
10 Reasons To Use Open Source Software-Defined Networking10 Reasons To Use Open Source Software-Defined Networking
10 Reasons To Use Open Source Software-Defined NetworkingVala Afshar
 
"Work like a startup!" a.k.a. building an internal venture in a big company
"Work like a startup!" a.k.a. building an internal venture in a big company"Work like a startup!" a.k.a. building an internal venture in a big company
"Work like a startup!" a.k.a. building an internal venture in a big companyHarri Kiljander
 
Can a lean startup be built inside a large company?
Can a lean startup be built inside a large company?Can a lean startup be built inside a large company?
Can a lean startup be built inside a large company?Harri Kiljander
 
The future of technology final project
The future of technology final projectThe future of technology final project
The future of technology final projectgmsalv02
 
Apple Study: 8 easy steps to beat Microsoft (and Google)
Apple Study: 8 easy steps to beat Microsoft (and Google)Apple Study: 8 easy steps to beat Microsoft (and Google)
Apple Study: 8 easy steps to beat Microsoft (and Google)Ouriel Ohayon
 

Tendances (18)

Mobile Testing: Challenges and Solutions
Mobile Testing: Challenges and SolutionsMobile Testing: Challenges and Solutions
Mobile Testing: Challenges and Solutions
 
Creativity & Innovation
Creativity & InnovationCreativity & Innovation
Creativity & Innovation
 
Adventures on the Road to Enterprise Virtual Assistants
Adventures on the Road to Enterprise Virtual AssistantsAdventures on the Road to Enterprise Virtual Assistants
Adventures on the Road to Enterprise Virtual Assistants
 
Mobile Web Performance Optimization 1-7-14
Mobile Web Performance Optimization 1-7-14Mobile Web Performance Optimization 1-7-14
Mobile Web Performance Optimization 1-7-14
 
UXPA2019 Enhancing the User Experience for People with Disabilities: Top 10 ...
UXPA2019 Enhancing the User Experience for People with Disabilities: Top 10 ...UXPA2019 Enhancing the User Experience for People with Disabilities: Top 10 ...
UXPA2019 Enhancing the User Experience for People with Disabilities: Top 10 ...
 
Senscape for mo mo bj 530
Senscape for mo mo bj 530Senscape for mo mo bj 530
Senscape for mo mo bj 530
 
4th blog post
4th blog post4th blog post
4th blog post
 
Using Technology to Make People More Powerful
Using Technology to Make People More PowerfulUsing Technology to Make People More Powerful
Using Technology to Make People More Powerful
 
Top10 techno
Top10 technoTop10 techno
Top10 techno
 
Embedded Development - to Fit the Unique Needs of Enterprises Around the Globe
Embedded Development - to Fit the Unique Needs of Enterprises Around the GlobeEmbedded Development - to Fit the Unique Needs of Enterprises Around the Globe
Embedded Development - to Fit the Unique Needs of Enterprises Around the Globe
 
What is new about javaspace?
What is new about javaspace?What is new about javaspace?
What is new about javaspace?
 
Kaspars Petersons - BYOD - more like BYOP
Kaspars Petersons - BYOD - more like BYOPKaspars Petersons - BYOD - more like BYOP
Kaspars Petersons - BYOD - more like BYOP
 
Future of IT preso
Future of IT presoFuture of IT preso
Future of IT preso
 
10 Reasons To Use Open Source Software-Defined Networking
10 Reasons To Use Open Source Software-Defined Networking10 Reasons To Use Open Source Software-Defined Networking
10 Reasons To Use Open Source Software-Defined Networking
 
"Work like a startup!" a.k.a. building an internal venture in a big company
"Work like a startup!" a.k.a. building an internal venture in a big company"Work like a startup!" a.k.a. building an internal venture in a big company
"Work like a startup!" a.k.a. building an internal venture in a big company
 
Can a lean startup be built inside a large company?
Can a lean startup be built inside a large company?Can a lean startup be built inside a large company?
Can a lean startup be built inside a large company?
 
The future of technology final project
The future of technology final projectThe future of technology final project
The future of technology final project
 
Apple Study: 8 easy steps to beat Microsoft (and Google)
Apple Study: 8 easy steps to beat Microsoft (and Google)Apple Study: 8 easy steps to beat Microsoft (and Google)
Apple Study: 8 easy steps to beat Microsoft (and Google)
 

Similaire à Open Source Governance for your Organization

OpenChain Webinar 57 - The Open Source Initiative - 2023-11-27
OpenChain Webinar 57 - The Open Source Initiative - 2023-11-27OpenChain Webinar 57 - The Open Source Initiative - 2023-11-27
OpenChain Webinar 57 - The Open Source Initiative - 2023-11-27Shane Coughlan
 
Breaking Free from Proprietary Gravitational Pull
Breaking Free from Proprietary Gravitational PullBreaking Free from Proprietary Gravitational Pull
Breaking Free from Proprietary Gravitational PullGreat Wide Open
 
Practical Trademark Law for FOSS Projects
Practical Trademark Law for FOSS ProjectsPractical Trademark Law for FOSS Projects
Practical Trademark Law for FOSS ProjectsShane Curcuru
 
Managing Community Open Source Brands
Managing Community Open Source BrandsManaging Community Open Source Brands
Managing Community Open Source BrandsShane Curcuru
 
Managing the Software Supply Chain: Policies that Promote Innovation While Op...
Managing the Software Supply Chain: Policies that Promote Innovation While Op...Managing the Software Supply Chain: Policies that Promote Innovation While Op...
Managing the Software Supply Chain: Policies that Promote Innovation While Op...FINOS
 
Open soucre(cut shrt)
Open soucre(cut shrt)Open soucre(cut shrt)
Open soucre(cut shrt)Shivani Rai
 
Four Steps to Creating an Effective Open Source Policy
Four Steps to Creating an Effective Open Source PolicyFour Steps to Creating an Effective Open Source Policy
Four Steps to Creating an Effective Open Source PolicyBlack Duck by Synopsys
 
Intellectual Primer For Small Business oct 2011
Intellectual Primer For Small Business oct 2011Intellectual Primer For Small Business oct 2011
Intellectual Primer For Small Business oct 2011Cognition LLP
 
Four Steps to Creating an Effective Open Source Policy
Four Steps to Creating an Effective Open Source PolicyFour Steps to Creating an Effective Open Source Policy
Four Steps to Creating an Effective Open Source Policyiasaglobal
 
Open Source Governance at HP
Open Source Governance at HPOpen Source Governance at HP
Open Source Governance at HPBruno Cornec
 
Open Source BI (OSBI)
Open Source BI (OSBI)Open Source BI (OSBI)
Open Source BI (OSBI)Fru Louis
 
Open Source Governance v2.5
Open Source Governance v2.5Open Source Governance v2.5
Open Source Governance v2.5Inria
 
Fundamentals of Free and Open Source Software
Fundamentals of Free and Open Source SoftwareFundamentals of Free and Open Source Software
Fundamentals of Free and Open Source SoftwareRoss Gardler
 
How to keep developers happy and lawyers calm
How to keep developers happy and lawyers calmHow to keep developers happy and lawyers calm
How to keep developers happy and lawyers calmRogue Wave Software
 
Open Source Contribution Policies That Don't Suck
Open Source Contribution Policies That Don't SuckOpen Source Contribution Policies That Don't Suck
Open Source Contribution Policies That Don't SuckTobie Langel
 
Open source softwares, 2011
Open source softwares, 2011Open source softwares, 2011
Open source softwares, 2011Florent Renucci
 
Ten Elements of Open Source Governance
Ten Elements of Open Source GovernanceTen Elements of Open Source Governance
Ten Elements of Open Source GovernanceRogue Wave Software
 

Similaire à Open Source Governance for your Organization (20)

OpenChain Webinar 57 - The Open Source Initiative - 2023-11-27
OpenChain Webinar 57 - The Open Source Initiative - 2023-11-27OpenChain Webinar 57 - The Open Source Initiative - 2023-11-27
OpenChain Webinar 57 - The Open Source Initiative - 2023-11-27
 
Breaking Free from Proprietary Gravitational Pull
Breaking Free from Proprietary Gravitational PullBreaking Free from Proprietary Gravitational Pull
Breaking Free from Proprietary Gravitational Pull
 
Practical Trademark Law for FOSS Projects
Practical Trademark Law for FOSS ProjectsPractical Trademark Law for FOSS Projects
Practical Trademark Law for FOSS Projects
 
Managing Community Open Source Brands
Managing Community Open Source BrandsManaging Community Open Source Brands
Managing Community Open Source Brands
 
Managing the Software Supply Chain: Policies that Promote Innovation While Op...
Managing the Software Supply Chain: Policies that Promote Innovation While Op...Managing the Software Supply Chain: Policies that Promote Innovation While Op...
Managing the Software Supply Chain: Policies that Promote Innovation While Op...
 
Open soucre(cut shrt)
Open soucre(cut shrt)Open soucre(cut shrt)
Open soucre(cut shrt)
 
Four Steps to Creating an Effective Open Source Policy
Four Steps to Creating an Effective Open Source PolicyFour Steps to Creating an Effective Open Source Policy
Four Steps to Creating an Effective Open Source Policy
 
Intellectual Primer For Small Business oct 2011
Intellectual Primer For Small Business oct 2011Intellectual Primer For Small Business oct 2011
Intellectual Primer For Small Business oct 2011
 
Four Steps to Creating an Effective Open Source Policy
Four Steps to Creating an Effective Open Source PolicyFour Steps to Creating an Effective Open Source Policy
Four Steps to Creating an Effective Open Source Policy
 
Open Source Governance at HP
Open Source Governance at HPOpen Source Governance at HP
Open Source Governance at HP
 
Open Source BI (OSBI)
Open Source BI (OSBI)Open Source BI (OSBI)
Open Source BI (OSBI)
 
Open Source Governance v2.5
Open Source Governance v2.5Open Source Governance v2.5
Open Source Governance v2.5
 
Methods about Open Source Governance v2.5
Methods about Open Source Governance v2.5Methods about Open Source Governance v2.5
Methods about Open Source Governance v2.5
 
Osbi Sesame?
Osbi Sesame?Osbi Sesame?
Osbi Sesame?
 
Fundamentals of Free and Open Source Software
Fundamentals of Free and Open Source SoftwareFundamentals of Free and Open Source Software
Fundamentals of Free and Open Source Software
 
Why choose-liferay
Why choose-liferayWhy choose-liferay
Why choose-liferay
 
How to keep developers happy and lawyers calm
How to keep developers happy and lawyers calmHow to keep developers happy and lawyers calm
How to keep developers happy and lawyers calm
 
Open Source Contribution Policies That Don't Suck
Open Source Contribution Policies That Don't SuckOpen Source Contribution Policies That Don't Suck
Open Source Contribution Policies That Don't Suck
 
Open source softwares, 2011
Open source softwares, 2011Open source softwares, 2011
Open source softwares, 2011
 
Ten Elements of Open Source Governance
Ten Elements of Open Source GovernanceTen Elements of Open Source Governance
Ten Elements of Open Source Governance
 

Plus de Robert Sutor

Considering New Data Sources
Considering New Data SourcesConsidering New Data Sources
Considering New Data SourcesRobert Sutor
 
For the Love of Big Data
For the Love of Big DataFor the Love of Big Data
For the Love of Big DataRobert Sutor
 
Lotusphere 2012 - Harnessing the Power of Enterprise Mobility
Lotusphere 2012 - Harnessing the Power of Enterprise Mobility Lotusphere 2012 - Harnessing the Power of Enterprise Mobility
Lotusphere 2012 - Harnessing the Power of Enterprise Mobility Robert Sutor
 
Landmines for Open Source in the Mobile Space
Landmines for Open Source in the Mobile SpaceLandmines for Open Source in the Mobile Space
Landmines for Open Source in the Mobile SpaceRobert Sutor
 
ApacheCon 2010 Keynote: Problems, Data, and Languages
ApacheCon 2010 Keynote: Problems, Data, and LanguagesApacheCon 2010 Keynote: Problems, Data, and Languages
ApacheCon 2010 Keynote: Problems, Data, and LanguagesRobert Sutor
 
Regarding Clouds, Mainframes, and Desktops … and Linux
Regarding Clouds, Mainframes, and Desktops … and LinuxRegarding Clouds, Mainframes, and Desktops … and Linux
Regarding Clouds, Mainframes, and Desktops … and LinuxRobert Sutor
 
Linux Everywhere? Matching the Workload to the Computer
Linux Everywhere? Matching the Workload to the ComputerLinux Everywhere? Matching the Workload to the Computer
Linux Everywhere? Matching the Workload to the ComputerRobert Sutor
 
Linux, Virtualisation, and Clouds
Linux, Virtualisation, and CloudsLinux, Virtualisation, and Clouds
Linux, Virtualisation, and CloudsRobert Sutor
 
The Intersection of Ideas in Open Source and Open Standards
The Intersection of Ideas in Open Source and Open StandardsThe Intersection of Ideas in Open Source and Open Standards
The Intersection of Ideas in Open Source and Open StandardsRobert Sutor
 
IBM Standards Principles
IBM Standards PrinciplesIBM Standards Principles
IBM Standards PrinciplesRobert Sutor
 
Information Technology Supporting the Development of International Standards
Information Technology Supporting the Development of International StandardsInformation Technology Supporting the Development of International Standards
Information Technology Supporting the Development of International StandardsRobert Sutor
 
Smaller, Flatter, Smarter
Smaller, Flatter, SmarterSmaller, Flatter, Smarter
Smaller, Flatter, SmarterRobert Sutor
 

Plus de Robert Sutor (12)

Considering New Data Sources
Considering New Data SourcesConsidering New Data Sources
Considering New Data Sources
 
For the Love of Big Data
For the Love of Big DataFor the Love of Big Data
For the Love of Big Data
 
Lotusphere 2012 - Harnessing the Power of Enterprise Mobility
Lotusphere 2012 - Harnessing the Power of Enterprise Mobility Lotusphere 2012 - Harnessing the Power of Enterprise Mobility
Lotusphere 2012 - Harnessing the Power of Enterprise Mobility
 
Landmines for Open Source in the Mobile Space
Landmines for Open Source in the Mobile SpaceLandmines for Open Source in the Mobile Space
Landmines for Open Source in the Mobile Space
 
ApacheCon 2010 Keynote: Problems, Data, and Languages
ApacheCon 2010 Keynote: Problems, Data, and LanguagesApacheCon 2010 Keynote: Problems, Data, and Languages
ApacheCon 2010 Keynote: Problems, Data, and Languages
 
Regarding Clouds, Mainframes, and Desktops … and Linux
Regarding Clouds, Mainframes, and Desktops … and LinuxRegarding Clouds, Mainframes, and Desktops … and Linux
Regarding Clouds, Mainframes, and Desktops … and Linux
 
Linux Everywhere? Matching the Workload to the Computer
Linux Everywhere? Matching the Workload to the ComputerLinux Everywhere? Matching the Workload to the Computer
Linux Everywhere? Matching the Workload to the Computer
 
Linux, Virtualisation, and Clouds
Linux, Virtualisation, and CloudsLinux, Virtualisation, and Clouds
Linux, Virtualisation, and Clouds
 
The Intersection of Ideas in Open Source and Open Standards
The Intersection of Ideas in Open Source and Open StandardsThe Intersection of Ideas in Open Source and Open Standards
The Intersection of Ideas in Open Source and Open Standards
 
IBM Standards Principles
IBM Standards PrinciplesIBM Standards Principles
IBM Standards Principles
 
Information Technology Supporting the Development of International Standards
Information Technology Supporting the Development of International StandardsInformation Technology Supporting the Development of International Standards
Information Technology Supporting the Development of International Standards
 
Smaller, Flatter, Smarter
Smaller, Flatter, SmarterSmaller, Flatter, Smarter
Smaller, Flatter, Smarter
 

Dernier

Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slidevu2urc
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsEnterprise Knowledge
 
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptxHampshireHUG
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking MenDelhi Call girls
 
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Servicegiselly40
 
Slack Application Development 101 Slides
Slack Application Development 101 SlidesSlack Application Development 101 Slides
Slack Application Development 101 Slidespraypatel2
 
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...shyamraj55
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking MenDelhi Call girls
 
Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Paola De la Torre
 
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...Neo4j
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerThousandEyes
 
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesSinan KOZAK
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityPrincipled Technologies
 
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationMy Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationRidwan Fadjar
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreternaman860154
 
A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024Results
 
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfThe Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfEnterprise Knowledge
 
Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)Allon Mureinik
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Igalia
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)Gabriella Davis
 

Dernier (20)

Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slide
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI Solutions
 
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men
 
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Service
 
Slack Application Development 101 Slides
Slack Application Development 101 SlidesSlack Application Development 101 Slides
Slack Application Development 101 Slides
 
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
 
Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101
 
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
 
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen Frames
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
 
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationMy Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 Presentation
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreter
 
A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024
 
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfThe Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
 
Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)
 

Open Source Governance for your Organization

  • 1. Bob Sutor – VP, Open Systems Strategy 29 March, 2011 Open Source Governance for your Organization © 2011 IBM Corporation
  • 2. Before we get started ! Per my website: The content on this site is my own and does not necessarily represent my employer’s positions, strategies or opinions. ! http://www.sutor.com ! This discussion does not constitute legal advice. ! I’m not an attorney, and certainly not an intellectual property attorney, and you should consult one as necessary. 2 29 March 2011 Bob Sutor - Open Source Governance for your Organization © 2011 IBM Corporation
  • 3. The key question Do you have proper legal controls and business processes in place to deal with open source software? 3 29 March 2011 Bob Sutor - Open Source Governance for your Organization © 2011 IBM Corporation
  • 4. Your open source governance strategy ! Five years ago, it was not uncommon for that strategy to be defined as “you shall use no open source software.” ! You need to understand the legal risks and responsibilities for any software you use, and weigh those against the business value. ! Work out a plan that specifies what business and legal controls are in place to approve use of open source in your organization or in your products, and make sure you have a well defined escalation path. 4 29 March 2011 Bob Sutor - Open Source Governance for your Organization © 2011 IBM Corporation
  • 5. What you need to know ! All projects to which your employees or organizational members contribute, the free and open source licenses being used, and the intellectual property commitments those contributions make upon your company or organization. ! All use of open source code within internal processes, product development, and services engagements. 5 29 March 2011 Bob Sutor - Open Source Governance for your Organization © 2011 IBM Corporation
  • 6. What you need to know ! All open source code that goes into your hardware products, software products, web-delivered services, or are given to your customers as part of consulting and services engagements. ! The location of all open source code repositories used in development, with strict rules about what code with which licenses can be combined (or not). 6 29 March 2011 Bob Sutor - Open Source Governance for your Organization © 2011 IBM Corporation
  • 7. What you then need to put in place ! Uniform cross-organizational rules and policies about the use of open source, with the ability to audit adherence. ! Tools to determine code provenance: from which original bodies of open source code did your current codebase derive? ! Balanced policies to weigh the business and legal benefits and risks in using open source code. 7 29 March 2011 Bob Sutor - Open Source Governance for your Organization © 2011 IBM Corporation
  • 8. What you then need to put in place ! Education for all employees and contractors, with special sections appropriate for users, contributors, developers, and distributors of open source code. ! Clear processes defining when decisions about open source can be made locally and when they must be made centrally, with paths for escalating decisions going up both the executive and legal chains. ! An aggressive policy for contributing to the various open source communities from which you benefit in your company or organization. 8 29 March 2011 Bob Sutor - Open Source Governance for your Organization © 2011 IBM Corporation
  • 9. The IBM experience ! Ten+ years contributing to and leading hundreds of open source projects in efforts such as Linux, Eclipse, and Apache. ! An internal governance process embodied within the Open Source Steering Committee (OSSC), with the set of rules now in their third generation in the last decade. ! The OSSC reviews all IBM external activities involving Open Source including – Starting a new OSS community/project – Contributing to an existing OSS community – Using OSS in IBM products or services – Distributing reference implementations or OSS modifications – Redistributing (OEM or Resell) vendor products containing OSS 9 29 March 2011 Bob Sutor - Open Source Governance for your Organization © 2011 IBM Corporation
  • 10. Use of open source has grown ! We have seen proposals to the OSSC grow steadily. ! The proposals fall into 3 categories – Already evaluated and approved for use – Meets well-defined criteria and a centralized committee can handle – Complex or original scenarios that are best decided by top of the business ! The governance process continues to evolve – Scalability: handle increase in the number proposals – Delegation: allow business units to drive majority of decisions – Economy: don’t spend money on people and resources to answer questions to which you already know the answers. 10 29 March 2011 Bob Sutor - Open Source Governance for your Organization © 2011 IBM Corporation
  • 11. Some lessons learned ! We were worried about code quality but we shouldn’t have been. ! We gained a better understanding of the open source domain – Copyright and patent complexities – License terms and conditions – Usual lack of warranty ! We learned to balanced open and proprietary. 11 29 March 2011 Bob Sutor - Open Source Governance for your Organization © 2011 IBM Corporation
  • 12. Some lessons learned ! We gained a better understanding of the value of open source – How to leverage it in what we do – How and where to contribute – How to work well in open source communities ! We learned to manage the risks. ! We learned it is important to have clear business and strategic reasons for using open source 12 29 March 2011 Bob Sutor - Open Source Governance for your Organization © 2011 IBM Corporation
  • 13. Final thoughts ! Develop your open source policy collaboratively among your business, technical, and legal experts, don’t dictate it. ! Education is key for employee and contractor compliance. ! Establish clear policy for what employees can and cannot do with open source in their spare time. ! Consider using code pedigree and scanning services from companies such as Black Duck, OpenLogic, and Palamida. ! Know where handling open source needs to be the same as closed source, and where it needs to be different. ! Plan to iterate on and refine your policy yearly for the first few years. 13 29 March 2011 Bob Sutor - Open Source Governance for your Organization © 2011 IBM Corporation