Category: 2.3 Open Source (Building)
-
![Industry best practices for component approval in open source governance [EuroPLoP 2020]](https://dirkriehle.com/wp-content/uploads/featured/10083-berlin-wall-of-terror-300x150.jpg)
Industry best practices for component approval in open source governance [EuroPLoP 2020]
Abstract: Increasingly companies realize the value of using free/libre and open source software (FLOSS) in their products, but need to manage the associated risks. Leading companies introduce open source governance as a solution. A key aspect of corporate FLOSS governance deals with choosing and evaluating open source components for use in products. Following an industry-based…
-
![Getting started with corporate open source governance: A case study evaluation of industry best practices [HICSS 2021]](https://dirkriehle.com/wp-content/uploads/featured/10085-lisbon-el-corte-ingles-elevator-sign-1-300x150.jpg)
Getting started with corporate open source governance: A case study evaluation of industry best practices [HICSS 2021]
Abstract: Open source software usage in companies is on the rise, often resulting in lower development costs, higher quality, and quick availability of code. However, using open source software in products comes with legal, business, and technical risks. Experienced companies prevent and address these risks through corporate open source governance. In our previous work, we…
-
Continuous open source license compliance (Phipps & Zacchiroli, IEEE Computer)
I’m happy to report that the 12th article in the open source column of IEEE Computer has been published. Title Continuous Open Source License Compliance Keywords Open-source software, licenses, supply chains, standards, computer security Authors Simon Phipps; Stefano Zacchiroli Publication Computer vol. 53, no. 12 (December 2020), pp. 115-119 Abstract: This article considers the role…
-
Standardizing open source license compliance with OpenChain (Shane Coughlan, IEEE Computer Column)
I’m happy to report that the 11th article in the open source column of IEEE Computer has been published. Title Standardizing Open Source License Compliance With OpenChain Keywords Cryptography, distributed databases, IEC standards, ISO standards, legislation, project management, […] Authors Shane Coughlan, Linux Foundation Publication Computer vol. 53, no. 11 (November 2020), pp. 70-74 Abstract:…
-
Tools for software composition analysis (Philippe Ombredanne, IEEE Computer)
I’m happy to report that the tenth article in the open source column of IEEE Computer has been published. Title Free and Open Source Software License Compliance: Tools for Software Composition Analysis Keywords Open-source software, software composition, open source licenses, automation Authors Philippe Ombredanne, nexB Inc. Publication Computer vol. 53, no. 10 (October 2020), pp.…
-
A researcher’s perspective on “Do developers care about open source?”
Senior developers weigh costs and benefits when deciding what code components to use