Open Chain Q2 Steering Committee Meeting - 2025-06-25

1. Steering Committee
Meeting
Estimated Start Time: 12:00
MDT
2025-06-25 @ 12:00 MDT - 30 minutes
We are meeting at:
Colorado Convention Center
Room 707
08:30 to 12:30 MDT
2025-06-25

2. Context: this meeting is part of our formal method of managing various responsibilities in the
OpenChain Project, as defined in our Project Charter. The Governing Board Meeting consists of
Voting Representatives from Platinum Members and invited (but non-voting) guests. That is
where we formally address budget and strategy. Meanwhile, the Steering Committee consists of
Voting Representatives from Platinum Members and the Chair(s) of the Specification Work
Group, plus invited (but non-voting) guests.
Our agenda has 4 items for Q1 2025:
● Review of proposed draft updates to specifications
● ISO Periodic Review of JTC-1 PAS Standards
● Any Other Business?
● Close of Meeting
Agenda

3. Board Member Roll Call
👍 ✅Ayumi Watanabe (Hitachi)
👍✅Chloe Zhong (HONOR)
👍✅Cui Jinguo (Huawei)
👍✅David Marr (Qualcomm)
👍✅Endo San (Toyota)
👍✅Fei Wan (Comcast)
👍✅Helio Chissini de Castro (CARIAD)
👍✅Jimmy Ahlberg (Ericsson)
🙏✅ Jonathan Torres (Meta)
👍Kato San (Panasonic)
👍✅ Ninjouji San for Kawamura San (Honda)
👍✅ Kobota San (Sony) + Shima San
👍✅Kobayashi San for Takeyana San (Toshiba)
👍✅ Lennart Seck (BMW)
👍✅Marcel Kurzmann (Bosch)
👍✅Mary Hardy (Microsoft)
👍✅Matthew Crawford (Arm)
🙏✅Oliver Fendt (Siemens)
👍✅Osaki San (Fujitsu)
👍✅Oscar Valenzuela (Amazon)
👍✅ Prasad Iyer (Cisco)
🙏Sonal Bhoraniya (Google)
🙏✅ Vincent Wu (MOXA)
👍Yoneshima San (NEC)
👍✅Zhenhua Sun (ByteDance)
Green welcomes a new voting member
✅ = Permission to Proceed
👍 = Plan to Attend
🎉 = At the meeting
🙏 = Apologies
* = Dialed in after Roll Call

4. Voting Guest
Chris Wood, Lockheed Martin
Chair of the OpenChain Specification Work Group

5. Invited Guests - Non-Voting Observers
Richard Sikang Bian
Head of Open Source, Ant Group
Grant Likely
CTO, Linaro
Kiyoshi Owada
Socionext
Jory Burson
VP Standards, LF

6. Item #1:
Periodic Renewal of ISO/IEC 5230
10 Minutes
Overall Time Allocated:
Estimated Start Time: 12:05 MDT

7. ISO Periodic Review of JTC-1 PAS Standards
ISO has a periodical review that takes place five years after the granting of an
ISO/IEC standard using the JTC-1 PAS Transposition Process to check if such
standards are still relevant and/or need adjustment.
The OpenChain Project Governing Board formally requested the Joint
Development Foundation to break down the required action items necessary for
the ISO Periodical Review process.
We have some initial feedback to help us plan ahead. See next slide.

8. Known Next Action: Send A Letter
According to our Seth, our JDF contact between OpenChain / JDF / JTC-1, the
required action is to send a letter to our PAS mentor confirming:
● The Specification is stable (unchanged)
● The Specification continues to be supported by OpenChain
● There are no changes to the underlying terms of the Specification
(Copyright, Process, IPR)
Full details are outlined in the next 5 slides. Expect updates as he works with
the JDF / JTC-1 liaison.

9. OpenChain Reapproval
9
● Every five years, each ISO specification goes through a renewal process.
● The OpenChain Specification is due to renew in October 2025.
○ For those members who have access to the ISO portal, the Project Detail web page may
be found at:
https://sd.iso.org/projects/project/81039/overview
○ Text page of the Project Detail webpage is on the next slide.
● The re-approval process is slightly different for PAS submitters than it is for ISO Sub-
Committees (SC). The SCs have process infrastructure and a more detailed process
associated with the renewals.
● JTC-1 is the home for all PAS submissions, so our Specification ISO/IEC 5230 does not live in
an ISO SC and so does not have the same administrative support or the exact same process
for reapproval.
2024
Joint Development Foundation

10. JDF’s Proposed Letter
10

11. Discussion and Decision of Next Steps
5 Minutes
Discussion Time Allocated:
Motion to Approve

12. Item #2:
Proposed Updates to our Existing ISO Standards
15 Minutes
Overall Time Allocated:
Estimated Start Time: 12:15 MDT

13. Proposed Updates To Our Existing Standards
● Suggestions for updates were collected over a 2-
year period
● There was a 6-month public comment period
● There was a 3-month freeze period
● The proposals are now in front of the Steering
Committee on 2025-06-25 for review and formal
decisions.

14. Review of suggested changes to ISO/IEC 5230:2020
● Current ISO standard:
○ https://github.com/OpenChain-Project/License-Compliance-Specification/blob/master/ISO-5230-
2020/en/ISO-5230-2020.md
● Current Next Generation Draft (pre-public comments period):
○ https://github.com/OpenChain-Project/License-Compliance-
Specification/blob/master/3.0/en/openchain-license-compliance-3.0.md
● All open issues have been closed by the Specification Work Group
○ https://github.com/OpenChain-Project/License-Compliance-
Specification/issues?q=is%3Aissue+is%3Aclosed
Next:
● The six month comment period and three month freeze period have been
completed. It is up to the Steering Committee to decide if we proceed with the
changes, and on what timescale.

15. Suggestion #1 for ISO/IEC 5230:2020

16. Suggestion #2 for ISO/IEC 5230:2020

17. Suggestion #3 for ISO/IEC 5230:2020

18. Suggestion #4 ISO/IEC 5230:2020

19. Suggestion #5 for ISO/IEC 5230:2020

20. Review of suggested changes to ISO/IEC 18974:2023
● Current ISO standard:
○ https://github.com/OpenChain-Project/Security-Assurance-Specification/blob/main/Security-
Assurance-Specification/ISO-18974/en/ISO-18974.md
● Current Next Generation Draft (pre-public comments period):
○ https://github.com/OpenChain-Project/Security-Assurance-Specification/blob/main/Security-
Assurance-Specification/2.0/en/openchain-security-specification-2.0.md
● All open issues have been closed by the Specification Work Group
○ https://github.com/OpenChain-Project/Security-Assurance-
Specification/issues?q=is%3Aissue+is%3Aclosed
Next:
● The six month comment period and three month freeze period have been
completed. It is up to the Steering Committee to decide if we proceed with the
changes, and on what timescale.

21. Suggestion #1 for ISO/IEC 18974:2023

22. Suggestion #2 for ISO/IEC 18974:2023

23. Suggestion #3 for ISO/IEC 18974:2023

24. Suggestion #4 for ISO/IEC 18974:2023

25. Discussion and Decision of Next Steps
10 Minutes
Discussion Time Allocated:
Motion to Approve

26. Any Other Business?
Estimated Time: 5 Minutes
Estimated Start Time: 12:30 MDT

27. Thank You And Goodbye
Thank you to everyone who has participated in this meeting and contributed to
our strategy for 2025.
Motion to Approve

28. Close of Steering Committee
Meeting
Thank you for contributing!