OpenChain: Great Open Source Compliance For Everyone

•Download as PPTX, PDF•

0 likes•248 views

The OpenChain Project had a set of introduction slides to help people understand and support our activities. The latest version - with renewed membership overview and easier narrative slow - is now available in PDF, PPTX and ODP formats.

Software

Great Open Source Compliance For Everyone
OpenChain Project - The Linux Foundation
Available under the CC Attribution-NoDerivatives 4.0 International license.

Companies use open source
and get billions of dollars of code
9

Open source code was created by other people
10

How do we meet our legal requirements?
12

The OpenChain Specification defines the requirements
for a quality compliance program.
13

14
Training
Policy
Process
Inbound Outbound

Companies have the flexibility to decide the content of
each specific process, policies and training.
15

The goal is to build trust by having organizations
conformant with the OpenChain Specification.
16

OpenChain Conformance allows organizations to show
they meet these requirements.
17

If a company can answer “Yes” to each question they
are OpenChain Conformant.
19

The OpenChain Curriculum provides reference open
source processes and solutions.
20

Work Teams supporting OpenChain:
23
1.Specification - Chaired by Mark Gisi (Wind River)
1.Conformance - Chaired by Miriam Ballhausen (SCA)
1.Curriculum - Chaired by Alexios Zavros (Intel)
1.Onboarding - Chaired by Nathan Kumagai (Qualcomm)

Progress in 2018
25
1. International Partners - from law firms to certification authorities
• Example: Moorcrofts - UK
• Example: TÜV SÜD - Germany and Japan
2. Significant New Board Members
• Example: Toshiba, Facebook, Google, Uber (more announcements shortly)
3. Significant New Community Members
• Example: Microsoft
• Example: Panasonic
4. A move towards formal standardization
• Most likely PAS process for ISO - Launch ETA Q1 2020

Be part of this
26
Join the community:
https://www.openchainproject.org/community
Self-certify your organization:
https://certification.openchainproject.org

Contact: coughlan@linux.com
OpenChain Project - The Linux Foundation 27

This document outlines an introductory course on blockchain technologies and Hyperledger frameworks. The course introduces key concepts of blockchain and distributed ledger technologies. It provides an overview of different Hyperledger projects like Hyperledger Fabric, Sawtooth and Iroha. The course is aimed at both technical and non-technical audiences. It guides students on installing and implementing various Hyperledger blockchains through hands-on demonstrations and discusses suitable use cases for enterprises.

Purdue University Institute for Global Security and Defense Innovation launch...

Mike Dodd

The Institute for Global Security and Defense Innovation (iGSDI) at Purdue University aims to create a consortium of government, industry, and academic partners to solve complex defense problems. The consortium provides members opportunities to collaborate with Purdue researchers, access discussions on security threats, and participate in projects to influence defense policy. It also offers credentialing services to help members qualify for defense contracts and implement supply chain standards.

OpenChain Continual Improvement Case Studies

Shane Coughlan

This document discusses continual improvement of open source license compliance programs. It suggests that companies can refine their compliance programs after adopting the OpenChain ISO 5230 standard in several steps such as adding a software bill of materials, automation tools, and independent auditing processes. Companies are encouraged to consider their size, organization, and market to determine the best path for evolving their compliance program. Asking questions about current processes and goals can help identify effective next steps.

Great Open Source Compliance For Everyone - Version 9

Shane Coughlan

Great Open Source Compliance For Everyone - Version 5

Shane Coughlan

OpenChain: Giving everyone access to open source best practices - version 3

Shane Coughlan

The document discusses the OpenChain Project, which aims to promote best practices for open source compliance. It describes the three main parts of OpenChain - the Specification, Conformance, and Curriculum. The Specification defines requirements for open source compliance programs, Conformance allows organizations to demonstrate adherence to these requirements, and the Curriculum provides educational resources. The goal of OpenChain is to build trust in open source supply chains by encouraging organizations to follow the Specification. It is gaining popularity with over 50% membership growth and 15 conformant organizations.

OpenChain is a simple and effective standard defined by The Linux Foundation to ensure organizations have quality open source compliance programs. It provides requirements for policies, processes, training, and documentation for both inbound and outbound open source. While originally a de-facto industry standard, OpenChain will soon undergo formal standardization through the ISO PAS process to spread its adoption more widely and easily throughout global supply chains within 9 months instead of 3 years.

OpenChain - Complex Made Simple - Japanese Announcements

Shane Coughlan

This document discusses the OpenChain Project, which provides resources for managing open source compliance. It introduces the OpenChain Specification for describing best practices, the online Conformance tool for self-assessment, and supporting Curriculum materials. It highlights platinum member organizations and community work teams. The document also announces upcoming events and resources, including presentations at COSCUP Taiwan in August on open source compliance experiences and case studies from Sony. It encourages joining the OpenChain community mailing lists and describes how to access additional Japanese language materials on the onboarding, specification, and training resources.

Empowering Financial Institutions to Use Open Source With Confidence

WhiteSource

The days when financial institutions relied solemnly on proprietary code are over. Today, even the largest financial services firms have realized the benefits of using open source technology to build powerful, innovative applications at a reduced time-to-market. However, the financial services industry faces strict regulatory requirements that present it with a unique set of challenges, especially when it comes to open source usage (both consumption and contribution). FINOS is a non-profit organization whose purpose is to accelerate collaboration and innovation in financial services through the adoption of open source software, standards and best practices. Together with WhiteSource, they are able to provide a safe environment for developers to use open source components freely and fearlessly. Join FINOS and WhiteSource as they discuss: The challenges of open source usage The state of open source vulnerabilities management How FINOS uses WhiteSource to ensure the security and IP compliance of FINOS-produced open source software

WhiteSource and FINOS: Empowering Financial Institutions to use Open Source W...

DevOps.com

Introduction to OpenChain and the Role of Compliance in a Strong Governance P...

Shane Coughlan

This talk explains how the OpenChain Project works to build trust in open source by making open source license compliance simpler and more consistent. The OpenChain Specification defines a core set of requirements every quality compliance program must satisfy. The OpenChain Curriculum provides the educational foundation for open source processes and solutions, whilst meeting a key requirement of the OpenChain Specification. OpenChain Conformance allows organizations to display their adherence to these requirements. The result is that open source license compliance becomes more predictable, understandable and efficient for participants of the software supply chain.

OpenChain at EOLE 2017

Shane Coughlan

SOS3_11 Gerald Lane_IBM_The journey to accept Open Source in standards venues...

pavankalyanadroittec

This document discusses IBM's journey to accepting open source in standards venues. It explains that open source allows for collaborative problem solving across organizations through community-driven approaches. Open source is presented as fueling innovation similar to how science fuels technology. The document also notes that open source software can be a major source of innovation and that development through open communities leads to broad ideas and creativity. Finally, it discusses that open standards bodies are emerging policies to accommodate open source and intellectual property rights.

OSSF 2018 - Andrew Katz of Moorcrofts - OpenChain: a Tested Framework for Ope...

FINOS

OpenChain is a scalable, flexible compliance programme, developed by the Linux Foundation. Based on well-understood compliance programmes such as ISO 27001, it maps existing supply-chain procurement and production practices from other sectors into software development. It provides a great foundation for businesses of all sizes to adopt appropriate practices and procedures in place to control development and supply chain risks, with particular emphasis on open source licence compliance. Already adopted by companies like Qualcomm, Siemens, Toyota and ARM, it’s rapidly becoming a procurement standard for open source and open-source-derived software. The speaker, Andrew Katz, has helped companies of all sizes to adopt open chain procurement practices, and presents case studies on the process and benefits.

Invotra parliament presentation

Invotra

Commemorating 20 years of open source successes in building awareness and ado...

OW2

The document summarizes lessons learned from the first 20 years of open source software. In the first decade (1998-2008), open source advocacy and standardization of licensing through the Open Source Initiative helped drive adoption. The second decade (2008-2018) saw broad enterprise adoption as open source powered cloud, web services, and became central to most new software. Key lessons included how open source licensing crystallized consensus, created safe development spaces, and isolation of business models from code. Future challenges include license compliance, attribution requirements, and integrating open source values with standards as different industries converge.

Hyperledger: Advancing Blockchain Technology for Business

Cloud Standards Customer Council

Webinar presented live on May 17, 2017 Hyperledger is an open source collaborative effort created to advance cross-industry blockchain technologies. It is a global collaboration, hosted by The Linux Foundation, including leaders in finance, banking, IoT, supply chain, manufacturing and technology. In this webinar, Dan O'Prey, CMO at Digital Asset and Chair of the Hyperledger Marketing Committee, and IBM’s Chris Ferris, chair of the Hyperledger Technical Steering Committee, will provide an overview of Hyperledger. They will discuss the basics of distributed ledger technologies, business use cases for blockchain, and how to get involved with Hyperledger projects. To view a video recording, visit: http://www.cloud-council.org/webinars/the-hyperledger-project-advancing-blockchain-technology-for-business.htm

OpenChain Germany Work Group Meeting 1

Shane Coughlan

The document summarizes the first meeting of the OpenChain Germany Work Group. It discusses antitrust policies for Linux Foundation meetings and provides an agenda for the meeting. The agenda includes discussions of OpenChain becoming an ISO standard, developments in regional and automotive work groups, partner activities, and upcoming initiatives. It also summarizes the establishment of the first German work group meeting with 38 people from 29 companies in Nuremberg.

Open Source & Open Standards: Navigating the Intricacies of a Symbiotic Partn...

Aggregage

Waving an Open Source Flag in Australian Government

Aimee Maree Forsstrom

Meetup srilanka

Rajitha Gunawardhane

This document provides an overview of Hyperledger and blockchain technology. It discusses how Hyperledger is helping to drive collaboration and standards around blockchain through an open source approach. It highlights some of Hyperledger's projects in areas like healthcare records, cross-border payments, and medical licensing. It also shares statistics about Hyperledger's growth and community. The overall purpose is to introduce readers to Hyperledger and the potential of blockchain technology.

Introduction to OpenDaylight

Open Networking Summits

20 years of open source and... what’s next?

Speck&Tech

ABSTRACT: Open source started as a marketing program for free software back in 1998. Starting as a controversial and disruptive idea, it has moved through the stages of acceptance to become the dominant idea in creating software systems. Why did it start and what was the timeline? Why did open source work so well? What's next? BIO: Simon Phipps is managing director of Meshed Insights Ltd, providing companies with open community engagement advice. He is a pro-bono director of the Open Source Initiative, the global steward of the Open Source Definition - OSI serves to advocate for, educate about and build bridges within the open source community; of The Document Foundation, stewards of LibreOffice; and of the Open Rights Group, protecting digital rights in the UK. His career has included early engagement in establishing Java, XML and weblogs as computer industry technologies as well as contributions to open standards in a variety of fields. As chief open source officer at Sun Microsystems he supervised the open source relicensing of Solaris Unix, Java and many other software systems.

openEuler Case Study - The Journey to Supply Chain Security

Shane Coughlan

OpenChain @ LF Japan Executive Briefing - May 2024

Shane Coughlan

Similar to OpenChain: Great Open Source Compliance For Everyone

Great Open Source Compliance For Everyone (Version 3)

Shane Coughlan

Update on OpenChain: now we really begin

Shane Coughlan

Great Open Source Compliance For Everyone - Version 11

Shane Coughlan

OpenChain as a Standard

Shane Coughlan

OpenChain - Complex Made Simple - Japanese Announcements

Shane Coughlan

Empowering Financial Institutions to Use Open Source With Confidence

WhiteSource

WhiteSource and FINOS: Empowering Financial Institutions to use Open Source W...

DevOps.com

Introduction to OpenChain and the Role of Compliance in a Strong Governance P...

Shane Coughlan

OpenChain at EOLE 2017

Shane Coughlan

SOS3_11 Gerald Lane_IBM_The journey to accept Open Source in standards venues...

pavankalyanadroittec

OSSF 2018 - Andrew Katz of Moorcrofts - OpenChain: a Tested Framework for Ope...

FINOS

Invotra parliament presentation

Invotra

Commemorating 20 years of open source successes in building awareness and ado...

OW2

Hyperledger: Advancing Blockchain Technology for Business

Cloud Standards Customer Council

OpenChain Germany Work Group Meeting 1

Shane Coughlan

Open Source & Open Standards: Navigating the Intricacies of a Symbiotic Partn...

Aggregage

Waving an Open Source Flag in Australian Government

Aimee Maree Forsstrom

Meetup srilanka

Rajitha Gunawardhane

Introduction to OpenDaylight

Open Networking Summits

20 years of open source and... what’s next?

Speck&Tech

Similar to OpenChain: Great Open Source Compliance For Everyone (20)

Great Open Source Compliance For Everyone (Version 3)

Update on OpenChain: now we really begin

Great Open Source Compliance For Everyone - Version 11

OpenChain as a Standard

OpenChain - Complex Made Simple - Japanese Announcements

Empowering Financial Institutions to Use Open Source With Confidence

WhiteSource and FINOS: Empowering Financial Institutions to use Open Source W...

Introduction to OpenChain and the Role of Compliance in a Strong Governance P...

OpenChain at EOLE 2017

SOS3_11 Gerald Lane_IBM_The journey to accept Open Source in standards venues...

OSSF 2018 - Andrew Katz of Moorcrofts - OpenChain: a Tested Framework for Ope...

Invotra parliament presentation

Commemorating 20 years of open source successes in building awareness and ado...

Hyperledger: Advancing Blockchain Technology for Business

OpenChain Germany Work Group Meeting 1

Open Source & Open Standards: Navigating the Intricacies of a Symbiotic Partn...

Waving an Open Source Flag in Australian Government

Meetup srilanka

Introduction to OpenDaylight

20 years of open source and... what’s next?

More from Shane Coughlan

openEuler Case Study - The Journey to Supply Chain Security

Shane Coughlan

OpenChain @ LF Japan Executive Briefing - May 2024

Shane Coughlan

OpenChain Webinar: AboutCode and Beyond - End-to-End SCA

Shane Coughlan

OpenChain - The Ramifications of ISO/IEC 5230 and ISO/IEC 18974 for Legal Pro...

Shane Coughlan

OpenChain Education Work Group Monthly Meeting - 2024-04-10 - Full Recording

Shane Coughlan

The document summarizes the agenda for an Education Work Group call on April 10, 2024. It includes notices about antitrust policies for Linux Foundation meetings and a reminder that activities must comply with applicable competition laws. The document also thanks Nathan and contributors for their work, introduces a new boss, and outlines plans for 2024-2025, which involve continuing work on training slides, reviewing an education leaflet, proposing OpenChain UK education videos, releasing an official SBOM quality reference guide from the Telco Work Group, and creating short explainers to introduce OpenChain within organizations.

OpenChain AI Study Group - Europe and Asia Recap - 2024-04-11 - Full Recording

Shane Coughlan

The document summarizes a meeting of the OpenChain AI Study Group that recapped a previous workshop on AI compliance in the supply chain. It discusses identifying commonalities between AI compliance and the ISO 5230 standard on software supply chain security. It provides examples of reviewing and redlining the ISO 5230 standard and a related thinking document. The document also suggests starting a review of the ISO 42001 standard on AI management systems while noting it is not freely available. It asks if there is any other business and concludes by thanking and saying goodbye to attendees.

OpenChain Monthly Meeting North America and Asia - 2024-03-19

Shane Coughlan

The document summarizes the agenda for an OpenChain Monthly North America / Europe Meeting on 2024-03-19. It includes: 1) A notice about complying with antitrust laws and avoiding prohibited discussions. 2) The regular agenda covers sharing news, working on standards and core materials, reference materials, and other business. 3) News items include webinars on GitHub Copilot and export controls, and an OpenChain AI study group call. 4) Work includes discussing issues on the license compliance specification and a security assurance specification on GitHub. 5) Reference and support work involves the OpenChain education study group and supplier education leaflet.

OpenChain Webinar: Universal CVSS Calculator

Shane Coughlan

The document discusses antitrust policies for Linux Foundation meetings. It states that Linux Foundation meetings involve competitors and all activities must be in accordance with antitrust laws. Attendees should adhere to meeting agendas and not participate in prohibited activities under antitrust laws. Examples of prohibited actions are described in the Linux Foundation Antitrust Policy available online. Attendees with questions should contact their legal counsel or the Linux Foundation's legal counsel.

openEuler Community Overview - a presentation showing the current scale

Shane Coughlan

OpenEuler is an open source operating system that has seen exponential growth, with over 1.3 million global downloads, 900+ enterprise members, and 14,000+ contributors. It aims to be the number 1 server OS by 2023, with 50%+ estimated market share, by providing a versatile and intelligent OS for all scenarios from server to cloud to edge to embedded devices. OpenEuler also has a thriving ecosystem of over 400 innovation projects and many enterprise and community distributions to satisfy diverse industry requirements.

OpenChain AI Study Group - North America and Europe - 2024-02-20

Shane Coughlan

The document summarizes the agenda and discussion from an OpenChain AI study group meeting on building trust in the open source AI supply chain. The group discussed defining compliance artifacts and how they can be trusted throughout the supply chain. They also considered what constitutes a high-risk artifact and whether compliance should be based on risk type. Additionally, the group discussed achieving transparency in AI systems as models move towards more closed structures, and how to meet the study group's goals of establishing industry agreements on AI management principles.

AI Study Group North America - Europe 2024-02-06

Shane Coughlan

The document summarizes discussions from an OpenChain AI Study Group meeting on anti-trust policy and building trust in the open source AI supply chain. It recaps previous discussions, defines the scope as establishing how to ensure "compliance artifacts" like data cards and model cards can be trusted throughout the supply chain. It also lists AI regulatory frameworks and discusses using cases like delivering pre-trained models or datasets. The appendix section asks for any other business and recaps goals of establishing industry agreements on AI management and developing principles for transparency and bias.

OpenChain Monthly North America / Europe Call - 2024-02-06

Shane Coughlan

The OpenChain monthly meeting covered the following topics: 1) An announcement about upcoming OpenChain elections for working group chair positions and the process for nominations and voting. 2) An update on recent and upcoming calls for the AI Study Group exploring how to build trust in the open source AI supply chain. 3) A discussion of open issues for the ISO security and licensing standards being developed by OpenChain. 4) An early proposal to develop an OpenChain contribution process specification and a link to the draft document and issues. 5) An update that the OpenChain reference training slides are being finalized this week. 6) A summary of a recent Legal Work Group meeting on maturity models

OpenChain Export Control Work Group 2024-01-09

Shane Coughlan

This document summarizes an OpenChain Export Control meeting that will take place on January 9, 2023. It includes an anti-trust policy notice reminding participants that Linux Foundation meetings must comply with antitrust laws. The agenda has two items: discussing how the SPDX project's proposed operations profile and export control schema can help with export control work, and reviewing the status of a stalled crypto law survey book to decide how to move it forward.

OpenChain Legal Work Group - 2024-01-17

Shane Coughlan

The document summarizes a meeting of the OpenChain Legal Work Group that discussed maturity models for assessing competence in open source management. It includes: - An overview of the meeting agenda which focused on a presentation by Andrew Katz of Orcro about their open source maturity model based on ISO/IEC 5230:2020. - A high-level explanation of capability maturity models and OpenChain's potential as a framework for defining requirements and mapping them to maturity levels for different business functions. - An example assessment of the maturity of an organization's people, processes, information, and systems for generating software bill of materials, mapping it to relevant ISO requirements.

Openchain AI Study Group 2024-01-23.pptx

Shane Coughlan

The document summarizes an agenda for an OpenChain AI Study Group meeting. It begins with a notice about complying with antitrust laws during Linux Foundation meetings. The agenda then lists the meeting setup and format as the first item, followed by a discussion of goals for the study group around establishing industry agreements on AI management, developing AI principles for supply chain trust, and discussing AI ethics. It poses achieving the goals through weekly meetings and commitment to progress. It concludes by opening the floor for any other business.

OpenChain Webinar #58 - FOSS License Management through aliens4friends in Ecl...

Shane Coughlan

The document summarizes Aliens4friends, an Eclipse project that provides tooling for open source license compliance in the Oniro operating system. It discusses key principles of automating compliance work while enabling sustainable human review through reuse. The toolchain gets original source code from the build system, matches components to Debian's reviews, monitors the audit process, and provides a dashboard for visualization. The goal is to implement continuous compliance as a core part of the development workflow.

Maturity Models - Open Compliance Summit 2023

Shane Coughlan

The document discusses a capability maturity model (CMM) for assessing the maturity of an organization's open source software development practices. It presents a five-level maturity framework from initial to optimizing and maps out how capabilities could be assessed across four categories: people and organization, processes, information, and systems. The CMM is aligned with requirements in the OpenChain specification and ISO 5230 standard to provide a potential framework for determining an organization's open source compliance maturity.

OpenChain Annual Report 2023 - Key Metrics Slides

Shane Coughlan

The key strategic goals of the governing board were met over the past year. Several metrics related to standards adoption and conformant programs increased substantially, such as a 22% rise in ISO/IEC 5230 conformant programs and a 500% increase in ISO/IEC 18974 conformant programs. The partner program also expanded in various categories. Future standards developments are being discussed, including proposed updates to the existing standards and new specifications related to contributions and SBOM quality.

OpenChain Webinar 57 - The Open Source Initiative - 2023-11-27

Shane Coughlan

The document discusses defining open source artificial intelligence (AI). It outlines the Open Source Initiative's (OSI) mission to educate about and advocate for open source software. The OSI is working to define open source AI to clarify expectations and match them with policy goals of transparency, trustworthiness, etc. A proposed definition grants users four freedoms: to study and inspect AI systems, use them without permission, modify them, and share modified versions. The OSI will hold an in-person meeting in early 2024 to further develop an open source AI definition.

FOSSLight Community Day 2023-11-30

Shane Coughlan

The OpenChain Project aims to improve open source license compliance and security assurance through international standards. Over 1,000 companies collaborate through OpenChain to develop standards like ISO/IEC 5230 for license compliance and ISO/IEC 18974 for security assurance. Adoption of the standards is growing, with a 12% decrease in license issues and 31% of large German companies planning to adopt ISO/IEC 5230. OpenChain is working to develop new specifications and its global impact and member organizations are increasing.

More from Shane Coughlan (20)

openEuler Case Study - The Journey to Supply Chain Security

OpenChain @ LF Japan Executive Briefing - May 2024

OpenChain Webinar: AboutCode and Beyond - End-to-End SCA

OpenChain - The Ramifications of ISO/IEC 5230 and ISO/IEC 18974 for Legal Pro...

OpenChain Education Work Group Monthly Meeting - 2024-04-10 - Full Recording

OpenChain AI Study Group - Europe and Asia Recap - 2024-04-11 - Full Recording

OpenChain Monthly Meeting North America and Asia - 2024-03-19

OpenChain Webinar: Universal CVSS Calculator

openEuler Community Overview - a presentation showing the current scale

OpenChain AI Study Group - North America and Europe - 2024-02-20

AI Study Group North America - Europe 2024-02-06

OpenChain Monthly North America / Europe Call - 2024-02-06

OpenChain Export Control Work Group 2024-01-09

OpenChain Legal Work Group - 2024-01-17

Openchain AI Study Group 2024-01-23.pptx

OpenChain Webinar #58 - FOSS License Management through aliens4friends in Ecl...

Maturity Models - Open Compliance Summit 2023

OpenChain Annual Report 2023 - Key Metrics Slides

OpenChain Webinar 57 - The Open Source Initiative - 2023-11-27

FOSSLight Community Day 2023-11-30

Recently uploaded

Essentials of Automations: The Art of Triggers and Actions in FME

Safe Software

In this second installment of our Essentials of Automations webinar series, we’ll explore the landscape of triggers and actions, guiding you through the nuances of authoring and adapting workspaces for seamless automations. Gain an understanding of the full spectrum of triggers and actions available in FME, empowering you to enhance your workspaces for efficient automation. We’ll kick things off by showcasing the most commonly used event-based triggers, introducing you to various automation workflows like manual triggers, schedules, directory watchers, and more. Plus, see how these elements play out in real scenarios. Whether you’re tweaking your current setup or building from the ground up, this session will arm you with the tools and insights needed to transform your FME usage into a powerhouse of productivity. Join us to discover effective strategies that simplify complex processes, enhancing your productivity and transforming your data management practices with FME. Let’s turn complexity into clarity and make your workspaces work wonders!

Neo4j - Product Vision and Knowledge Graphs - GraphSummit Paris

Neo4j

Need for Speed: Removing speed bumps from your Symfony projects ⚡️

Łukasz Chruściel

No one wants their application to drag like a car stuck in the slow lane! Yet it’s all too common to encounter bumpy, pothole-filled solutions that slow the speed of any application. Symfony apps are not an exception. In this talk, I will take you for a spin around the performance racetrack. We’ll explore common pitfalls - those hidden potholes on your application that can cause unexpected slowdowns. Learn how to spot these performance bumps early, and more importantly, how to navigate around them to keep your application running at top speed. We will focus in particular on tuning your engine at the application level, making the right adjustments to ensure that your system responds like a well-oiled, high-performance race car.

Energy consumption of Database Management - Florina Jonuzi

Green Software Development

What is Augmented Reality Image Tracking

pavan998932

SMS API Integration in Saudi Arabia| Best SMS API Service

Yara Milbes

Discover the benefits and implementation of SMS API integration in the UAE and Middle East. This comprehensive guide covers the importance of SMS messaging APIs, the advantages of bulk SMS APIs, and real-world case studies. Learn how CEQUENS, a leader in communication solutions, can help your business enhance customer engagement and streamline operations with innovative CPaaS, reliable SMS APIs, and omnichannel solutions, including WhatsApp Business. Perfect for businesses seeking to optimize their communication strategies in the digital age.

E-commerce Application Development Company.pdf

Hornet Dynamics

Introducing Crescat - Event Management Software for Venues, Festivals and Eve...

Crescat

Crescat is industry-trusted event management software, built by event professionals for event professionals. Founded in 2017, we have three key products tailored for the live event industry. Crescat Event for concert promoters and event agencies. Crescat Venue for music venues, conference centers, wedding venues, concert halls and more. And Crescat Festival for festivals, conferences and complex events. With a wide range of popular features such as event scheduling, shift management, volunteer and crew coordination, artist booking and much more, Crescat is designed for customisation and ease-of-use. Over 125,000 events have been planned in Crescat and with hundreds of customers of all shapes and sizes, from boutique event agencies through to international concert promoters, Crescat is rigged for success. What's more, we highly value feedback from our users and we are constantly improving our software with updates, new features and improvements. If you plan events, run a venue or produce festivals and you're looking for ways to make your life easier, then we have a solution for you. Try our software for free or schedule a no-obligation demo with one of our product specialists today at crescat.io

Oracle 23c New Features For DBAs and Developers.pptx

Remote DBA Services

GraphSummit Paris - The art of the possible with Graph Technology

Neo4j

Vitthal Shirke Java Microservices Resume.pdf

Vitthal Shirke

Artificia Intellicence and XPath Extension Functions

Octavian Nadolu

DDS-Security 1.2 - What's New? Stronger security for long-running systems

Gerardo Pardo-Castellote

Fundamentals of Programming and Language Processors

Rakesh Kumar R

Oracle Database 19c New Features for DBAs and Developers.pptx

Remote DBA Services

E-commerce Development Services- Hornet Dynamics

Hornet Dynamics

Transform Your Communication with Cloud-Based IVR Solutions

TheSMSPoint

Discover the power of Cloud-Based IVR Solutions to streamline communication processes. Embrace scalability and cost-efficiency while enhancing customer experiences with features like automated call routing and voice recognition. Accessible from anywhere, these solutions integrate seamlessly with existing systems, providing real-time analytics for continuous improvement. Revolutionize your communication strategy today with Cloud-Based IVR Solutions. Learn more at: https://thesmspoint.com/channel/cloud-telephony

8 Best Automated Android App Testing Tool and Framework in 2024.pdf

kalichargn70th171

LORRAINE ANDREI_LEQUIGAN_HOW TO USE ZOOM

lorraineandreiamcidl

Microservice Teams - How the cloud changes the way we work

Sven Peters

A lot of technical challenges and complexity come with building a cloud-native and distributed architecture. The way we develop backend software has fundamentally changed in the last ten years. Managing a microservices architecture demands a lot of us to ensure observability and operational resiliency. But did you also change the way you run your development teams? Sven will talk about Atlassian’s journey from a monolith to a multi-tenanted architecture and how it affected the way the engineering teams work. You will learn how we shifted to service ownership, moved to more autonomous teams (and its challenges), and established platform and enablement teams.

Recently uploaded (20)

Essentials of Automations: The Art of Triggers and Actions in FME

Neo4j - Product Vision and Knowledge Graphs - GraphSummit Paris

Need for Speed: Removing speed bumps from your Symfony projects ⚡️

Energy consumption of Database Management - Florina Jonuzi

What is Augmented Reality Image Tracking

SMS API Integration in Saudi Arabia| Best SMS API Service

E-commerce Application Development Company.pdf

Introducing Crescat - Event Management Software for Venues, Festivals and Eve...

Oracle 23c New Features For DBAs and Developers.pptx

GraphSummit Paris - The art of the possible with Graph Technology

Vitthal Shirke Java Microservices Resume.pdf

Artificia Intellicence and XPath Extension Functions

DDS-Security 1.2 - What's New? Stronger security for long-running systems

Fundamentals of Programming and Language Processors

Oracle Database 19c New Features for DBAs and Developers.pptx

E-commerce Development Services- Hornet Dynamics

Transform Your Communication with Cloud-Based IVR Solutions

8 Best Automated Android App Testing Tool and Framework in 2024.pdf

LORRAINE ANDREI_LEQUIGAN_HOW TO USE ZOOM

Microservice Teams - How the cloud changes the way we work

OpenChain: Great Open Source Compliance For Everyone

1. Great Open Source Compliance For Everyone OpenChain Project - The Linux Foundation Available under the CC Attribution-NoDerivatives 4.0 International license.

2. 2

3. 3

4. 4

5. 5

6. 6

7. Compliance – A gateway to access 7

8. Let’s provide business context 8

9. Companies use open source and get billions of dollars of code 9

10. Open source code was created by other people 10

11. How we respect their rights? 11

12. How do we meet our legal requirements? 12

13. The OpenChain Specification defines the requirements for a quality compliance program. 13

14. 14 Training Policy Process Inbound Outbound

15. Companies have the flexibility to decide the content of each specific process, policies and training. 15

16. The goal is to build trust by having organizations conformant with the OpenChain Specification. 16

17. OpenChain Conformance allows organizations to show they meet these requirements. 17

18. 18

19. If a company can answer “Yes” to each question they are OpenChain Conformant. 19

20. The OpenChain Curriculum provides reference open source processes and solutions. 20

21. 21

22. 22

23. Work Teams supporting OpenChain: 23 1.Specification - Chaired by Mark Gisi (Wind River) 1.Conformance - Chaired by Miriam Ballhausen (SCA) 1.Curriculum - Chaired by Alexios Zavros (Intel) 1.Onboarding - Chaired by Nathan Kumagai (Qualcomm)

24. 24

25. Progress in 2018 25 1. International Partners - from law firms to certification authorities • Example: Moorcrofts - UK • Example: TÜV SÜD - Germany and Japan 2. Significant New Board Members • Example: Toshiba, Facebook, Google, Uber (more announcements shortly) 3. Significant New Community Members • Example: Microsoft • Example: Panasonic 4. A move towards formal standardization • Most likely PAS process for ISO - Launch ETA Q1 2020

26. Be part of this 26 Join the community: https://www.openchainproject.org/community Self-certify your organization: https://certification.openchainproject.org

27. Contact: coughlan@linux.com OpenChain Project - The Linux Foundation 27

OpenChain: Great Open Source Compliance For Everyone

Recommended

Recommended

More Related Content

Similar to OpenChain: Great Open Source Compliance For Everyone

Similar to OpenChain: Great Open Source Compliance For Everyone (20)

More from Shane Coughlan

More from Shane Coughlan (20)

Recently uploaded

Recently uploaded (20)

OpenChain: Great Open Source Compliance For Everyone