Antelink Presentation at EOLE 2011, Barcelona, Spain

545 views

Published on

Today, most software development teams use free and open source software (FOSS) components, because it increases the speed and the quality of the development. Many open source components are the de facto standard of their category. However, FOSS has licensing restrictions, and corporate organizations usually maintain a list of allowed and forbidden licenses. But how do you enforce this policy? How can you make sure that ALL files in your source depot, either belong to you, or fit your licensing policy?

Published in: Technology
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total views
545
On SlideShare
0
From Embeds
0
Number of Embeds
2
Actions
Shares
0
Downloads
4
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

Antelink Presentation at EOLE 2011, Barcelona, Spain

  1. 1. Guillaume ROUSSEAU, CEO EOLE 2011 Barcelona, Spain Managing FOSS during development Preventive and curative approaches.© Copyright 2010-2011 Antelink SAS 1
  2. 2. Table of Content About Antelink Open Source goes main stream Third part related quality issues Preventive vs curative approaches Antepedia, toward the census of open source code history © Copyright 2010-2011 Antelink SAS 2
  3. 3. About Antelink A venture backed european software vendor specializing – in software lifecycle management – the detection of open source Components Antelink helps you keep control of your software integration and supply chain in a globalized world. © Copyright 2010-2011 Antelink SAS 3
  4. 4. About Antelink +3.000 projects / +10.000 users Software Quality Assurance and Trustworthiness (SQUAT) Open Compliance Program Software Package Data Exchange © Copyright 2010-2011 Antelink SAS 4
  5. 5. Table of Content About Antelink Open Source goes main stream Third part related quality issues Preventive vs curative approaches Antepedia, toward the census of open source code history © Copyright 2010-2011 Antelink SAS 5
  6. 6. Open Source has gone mainstream } © Copyright 2010-2011 Antelink SAS 6
  7. 7. Open Source has gone mainstream By 2013, 90% will include OSS as part of their IT strategy Melinda-Carol Ballou Program Director Application Life- Cycle Management & Executive Strategies." This continues the existing trend forcombining internal IT resources withcontractors, both onshore and offshoreproviders, and use of Open Source." © Copyright 2010-2011 Antelink SAS 7
  8. 8. Leading to a dramatic increasein complex sourcing compile test analysis integration test Product package Product Developers Final product Final product Software Factory compile test analysis integration test package Product Final product Authors Software Factory compile test analysis integration test package DevelopersSoftware Factory Product Bill of Material Developers Final product © Copyright 2010-2011 Antelink SAS 8
  9. 9. Table of Content About Antelink Open Source goes main stream Third part related quality issues Preventive vs curative approaches Antepedia, toward the census of open source code history © Copyright 2010-2011 Antelink SAS 9
  10. 10. Know what is in your code ...Your Code Internally Third party Outsourced Third party developed Open Source Development Commercial ? ? ? ? Origin © Copyright 2010-2011 Antelink SAS 10
  11. 11. … keeping control of your softwareintegration and supply chainDevelopers Build Engineer Lawyer Customer Build Engineer compile test analysis integration test package Product Final product Software Factory Bill of Material Final product Production (deployment) © Copyright 2010-2011 Antelink SAS 11
  12. 12. Address licensing issuesanalyzing the legal situation Legal = Situation Authors Bill of Material Increase Legal Quality Perceived Automated Legal Legal Situation Save time VS Situation Mining Ease communication © Copyright 2010-2011 Antelink SAS 12
  13. 13. A reference from © Copyright 2010-2011 Antelink SAS 13
  14. 14. Identify security vulnerabilityManage version updates © Copyright 2010-2011 Antelink SAS 14
  15. 15. Table of Content About Antelink Open Source goes main stream Third part related quality issues Preventive vs curative approaches Antepedia, toward the census of open source code history © Copyright 2010-2011 Antelink SAS 15
  16. 16. Avoid late charges and budget-overrunReduce operation loss © Copyright 2010-2011 Antelink SAS 16
  17. 17. How to enforce your open source policyPreventive vs curative approaches Preventive Curative As often as possible At the end of Integrated in the continuous the release process integration process When a major event occurs © Copyright 2010-2011 Antelink SAS 17
  18. 18. Preventive vs curative approachesPros … Preventive CurativeAvoid late charges and budget over-run You pay when it is REALLY worth it Reduce operation loss Few people are involved (audit team) Cover short/mid/long term risks Integrated to the quality process © Copyright 2010-2011 Antelink SAS 18
  19. 19. Preventive vs curative approaches… and cons Preventive Curative Need affordable tools More expensive (tools + remediation)Need tools with very few false-positive Done in emergency (lot of stress)Need different tools for different users Will cover only short term risks May be too late ... © Copyright 2010-2011 Antelink SAS 19
  20. 20. Dont wait one there is ?Want to tryuntil of them a fire at home Be pro-active, empower as soon as possible everyone involved in the software lifecycle to mitigate risks that can doom your software assets. © Copyright 2010-2011 Antelink SAS 20
  21. 21. Table of Content About Antelink Open Source goes main stream Third part related quality issues Preventive vs curative approaches Antepedia, toward the census of open source code history © Copyright 2010-2011 Antelink SAS 21
  22. 22. Antepedia : The worlds largestKnowledge Base of open source projects More than 1,000,000 open source reusable components … and counting +1,000 projects each day © Copyright 2010-2011 Antelink SAS 22
  23. 23. Antepedia : The worlds largestKnowledge Base of open source projects © Copyright 2010-2011 Antelink SAS 23
  24. 24. Antepedia Searchhttp://www.antepedia.comSingle file Cloud service Original project License information Release date and location © Copyright 2010-2011 Antelink SAS 24
  25. 25. Life of open source projectis also complex © Copyright 2010-2011 Antelink SAS 25
  26. 26. © Copyright 2010-2011 Antelink SAS 26
  27. 27. Inconsistent License Informationhttp://sourceforge.net/projects/jwebmail/ http://jwebmail.sourceforge.net/about.html http://jwebmail.sourceforge.net/news.html © Copyright 2010-2011 Antelink SAS 27
  28. 28. Contact information Visit our web site http://www.antelink.com Try Antepedia http://www.antepedia.com Contact us contact@antelink.com Tel: +33 (0)1 42 39 30 78 18, Rue Yves Toudic 75010 Paris 10ème, France © Copyright 2010-2011 Antelink SAS Smart Apps for Great Development Teams !28

×