Network World
- Newsletters
- Videos
- Events
- Resources
- Communities
- The Challenges of OS Migration
- Citrix's Mobile Enterprise 360
- Cloud Powered Work
- The Essential Guide to Managing Power
- Get an Integrated Approach to Data Management
- Oracle Cloud KnowledgeVault
- Virtualization Boosts SMBs
- Your IT Journey — Your Way
- Research
- Aruba Networks Bring Your Own Device
- BlackBerry: Build up your BlackBerry® 10 knowledge
- CA Technologies Transform Your IT Strategy
- HP + Microsoft Data Management Appliances & Architectures
- Network World The Next Generation Firewall Challenge
- Network World Data Center Challenge 2012
- Riverbed Accelerate Business Performance Solution Center
- Riverbed Cascade® Solution Center
- View all Solution Centers
- Insider
- More
- Linked In
Survey Shows Companies May Not Realize They Distribute Open Source
Companies don't have necessary processes to ensure GPL compliance
By Kim Weins on Tue, 07/06/10 - 1:04pm.OpenLogic recently conducted a survey to determine whether companies have a full understanding of the activities that constitute distribution per the terms of common open source licenses. Highlights of the survey include:
- 67% of the respondents who said their companies don't distribute open source, also stated that they participated in activities - such as giving software to customers or partners, providing downloads of mobile apps , or giving software to outsourcers - that constitute distribution under open source licenses.
- Only 22% of companies were using any tools (open source, internal or 3rd party) or services to determine if they were using open source, despite that 84% of the companies were using open source software.
- 50% of Software developer respondents reported that their companies distribute open source, while only 14.3% of legal staff reported that their companies distribute open source.
Bottom line, many of these companies may be distributing open source without realizing it, thereby risking violation of copyleft clauses of the GPL and other open source licenses.
Distribution is a critical factor, since it triggers additional obligations in open source licenses and therefore additional compliance requirements. Clearly there is a disconnect here. Companies often don't fully realize that their activities constitute distribution under open source licenses.
There are several reasons for this disconnect:
- Companies often don't fully understand what constitutes distribution.
- Information about open source usage is not effectively shared throughout the organization
- Companies don't have tools or processes in place to find and track where open source is used
The good news is that there are clear steps that organizations can and should take to ensure they are complying with open source licenses.
- Develop and open source policy. OpenLogic provides a free policy builder and Wazi provides advice on open source policies.
- Educate technical and legal staff on open source licensing and your open source policy. FOSSBazaar is a community that helps educate companies on open source compliance issues.
- Consider scanning tools to help find where open source is used. There are several free, open source tools available including Fossology , OSS Discovery and BinaryAnalysis.
- Develop processes and systems for tracking the use of open source. The Software Freedon Law Center publishes A Practical Guide to GPL Compliance.
The survey was conducted in June 2010 by OpenLogic and had a total of 82 respondents including members of developer, architect and legal and compliance teams. Respondents came from a mix of small, medium and large companies: 35% were from companies with more than 1,000 employees; 29% had between 50 and 1,000 employees and 29% had fewer than 50 employees.
You can access a full set of survey results here.
Recent Blog Posts
- About Essential Open Source
Kim Weins is the Senior Vice President of Marketing and Products at OpenLogic, an open source provider focused on helping enterprises successfully and safely use open source software. Kim works with large enterprises to share open source governance and compliance best practices and to evangelize the benefits of using open source software.Kim helps to shape OpenLogic’s pioneering open source offerings, including an aggregated support model backed by open source developers, open source scanning and governance tools and services that guide companies through compliance with GPL and other open source licenses.
-
-
Most Discussed Posts
- On The Web
-
Network World, Inc
The Connected Enterprise