Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

Great Open Source Compliance For Everyone (Version 3)

64 views

Published on

Great Open Source Compliance For Everyone (Version 3) is a slide deck designed to provide an overview of the OpenChain Project. Our goal is to encourage the adoption of the key requirements for a quality open source compliance program.

Published in: Software
  • Be the first to comment

  • Be the first to like this

Great Open Source Compliance For Everyone (Version 3)

  1. 1. Great Open Source Compliance For Everyone Available under the CC Attribution-NoDerivatives 4.0 International license.
  2. 2. 2
  3. 3. 3
  4. 4. 4
  5. 5. 5
  6. 6. 6
  7. 7. Compliance – A gateway to access 7
  8. 8. Let’s provide business context 8
  9. 9. The internal company dialogue… 9
  10. 10. We use Open Source and get billions of dollars of code 10
  11. 11. This code was created by other people 11
  12. 12. How we respect their rights? 12
  13. 13. How do we meet our legal requirements? 13
  14. 14. Welcome To The Stack 14
  15. 15. https://www.spdx.org 15
  16. 16. http://www.todogroup.org 16
  17. 17. https://www.fossology.org 17
  18. 18. Welcome To The Stack 18
  19. 19. “How do I trust my open source supply chain?” 19
  20. 20. OpenChain Adoption – A Story of Levels (c)TOYOTA MOTOR CORPORATION 20 Level1 NOT understand Importance of OSS Compliance Level2 NOT understand whatto do Level3 NOT understand how todo Level4 Not Understand how toget certification ●Join events for Engineers/ Legalpeople/ IP people ●Workshop ●PR: Traditional Media/ TechMedia/ SNS ●Reference Material (Wiki/ Handbook/ Academic paper) ●Consultation ●Training support ●Self certification support ●Third-party certification
  21. 21. There are three parts to OpenChain Project: 21 1. Specification 2. Conformance 3. Curriculum
  22. 22. The OpenChain Specification defines the requirements for a quality compliance program. 22
  23. 23. 23 Training Policy Process Inbound Outbound
  24. 24. The OpenChain Specification confirms a company has open source processes, policies and training. Companies have the flexibility to decide each specific process, policies and training. 24
  25. 25. Common requirements for suppliers and customers makes everything simpler. Learn more here: https://www.openchainproject.org/spec 25
  26. 26. OpenChain Conformance allows organizations to show they meet these requirements. 26
  27. 27. 27
  28. 28. If a company can answer Yes to each question they are OpenChain Conformant. Learn more here: https://www.openchainproject.org/conformance 28
  29. 29. The OpenChain Curriculum provides reference open source processes and solutions. Learn more here: https://www.openchainproject.org/curriculum 29
  30. 30. 30
  31. 31. 31
  32. 32. 32
  33. 33. The OpenChain Curriculum can be used for any open source training program. Learn more here: https://www.openchainproject.org/curriculum 33
  34. 34. The goal is to build trust by having organizations conformant with the OpenChain Specification. 34
  35. 35. 35
  36. 36. Scale of Platinum Members: Over $750 Billion of Revenue 36
  37. 37. 37
  38. 38. Work Teams supporting OpenChain: 38 1.Specification - Chaired by Mark Gisi (Wind River) 1.Conformance - Chaired by Miriam Ballhausen (SCA) 1.Curriculum - Chaired by Alexios Zavros (Intel) 1.Onboarding - Chaired by Nathan Kumagai (Qualcomm)
  39. 39. 39
  40. 40. Progress Since Last Year 40 1. International Partners - from law firms to certification authorities • From Moorcrofts (UK) to TÜV SÜD (Germany and Japan) 2. Significant New Board Members • Toshiba (more announcements shortly) 3. Significant New Community Members • Microsoft, Panasonic and more 4. A Move towards formal standardization • The target is the PAS process for ISO - Launch ETA Q1 2020
  41. 41. Coming Soon 41 1.New Board Member Announcements 2.New Conformant Organization Announcements 3.New Partnership Announcements 4.Increasingly Powerful Positioning for Procurement • Standardization • Deployment by board members • Deployment by community members
  42. 42. Be part of this 42 Join the community: https://www.openchainproject.org/community Self-certify your organization: https://certification.openchainproject.org
  43. 43. Questions? OpenChain Project - The Linux Foundation 43

×