NEWSLETTERS
 

CIO.com updates, insights and advice on technology, management and your career.

 CIO BlackBerry News and Tips
 CIO Research and Analysis
 CIO Microsoft
 CIO Insider
More Newsletters | Edit Profile
 
RSS Feeds »
 
 
SUBSCRIBE TO CIO
 
Are you involved in setting the direction for your company's IT budget or strategy?

Apply today for a FREE subscription to CIO Magazine!

Subscription Services »
Reprints »

 


Mon, Jun 2, 2008 22:28 EDT

Where Are the Legal and Intellectual Property Bodies Buried in Open Source Adoption?

Posted by: Esther Schindler in Questions

Topic: IT Organization Management

Blog: Executives Online

Current Rating: 5 Comments: 4

While I wrote earlier about open-source licensing, that's just one of the legal issues for IT managers to deal with.

In the old days, a company could adopt a draconian attitude about everything its employees did and the software they used. (I saw one employee contract that, my lawyer explained, was written so that they'd own the copyright on any mystery novel I might write in my spare time.) Intellectual property has gotten a lot muddier since those days, both in the software that it uses that's created and maintained by the open-source community, and when an employee modifies an open-source application and wants to contribute the bug fixes or enhancements back to the community.

In your opinion, which intellectual property issues should be top of mind for IT executives? What legal issues should be considered when using open source in the enterprise? What should be considered when allowing/encouraging employees to contribute to a project?

You do not have flash or javascript support.
Average (4 votes)
5
comment icon Reply
 
All Comments Comments
 
Tue, Jun 3, 2008 5:23 EDT
Legal concern related to licensing
Posted by: Matt Aslett
Rating: 70

is ground that has been covered extensively before and open source vendors have done a good job in recent years to get their houses in order. I don't want to go over that again here. The short answer has to be that if you are concerned about IP issues related to open source software, hire a lawyer to double-check.

A more significant issue going forward could be educating businesses about the potential benefits of contributing back to open source projects, as well as the processes through which they can do so.

Encouraging customer contributions to open source projects is an area that the open source vendors have not been particularly good at to date, as noted by Red Hat's CEO, Jim Whitehurst. In fact it is one of the significant issues relating to how enterprises adopt open source software that has not been adequately addressed.

You do not have flash or javascript support.
 
Tue, Jun 3, 2008 14:58 EDT
Focus on the Right Bodies
Posted by: Mike Milinkovich
Rating: 75

If you are a CIO and you are using open source, I believe that you fundamentally need to focus on the copyright provenance of the code. Although a lot has been written about patents and open source, the fact is that software patents can be used to attack any project, organization, company, distributor and user in the software industry if their owner has the resources and the willingness to do so. And no one but the very largest of companies have the resources to either search for or indemnify against all of the patents that any interesting software product might read against. When you combine that with the fact that most software patents are questionable along with the existence of patent trolls, worrying about patent lawsuits is, in my view, akin to worrying about a bird flu pandemic. Completely out of your control, disastrous if it happens, but in the meantime life (and business) must go on. And all that energy your legal department spends fretting over the possibility could be more effectively applied elsewhere.

More simply: the software patent regime in the United States is horribly broken, but there is nothing intrinsic to using open source that makes it any more or any less broken.

Checking for copyright provenance is really around getting comfort that the open source projects that you are using can demonstrate that they know where they got their code from. At Eclipse we pour a lot of resources into this. Three full-time people, one of whom is a lawyer, spend their time reviewing the origin of Eclipse’s code, but even more importantly reviewing the open source projects that we use in Eclipse projects. We are checking things like: are there legal agreements that document the IP flow, are the origins of bug fixes and other contributions documented and do they review in turn the license and copyright compatibility of the components they are using? Doing this requires experience and time, but it is extremely valuable to the Eclipse ecosystem. Companies building products on or using technology from Eclipse can do so with greater confidence in the copyright provenance of what they are using.

Over time, we have built up quite a library of analyzed projects and we’ve even pondered whether this might be a resource that we could share with our members.

You do not have flash or javascript support.
 
Tue, Jun 3, 2008 15:36 EDT
Free Beer VS Freedom Isn't Free OSS Licenses
Posted by: ckeene
Rating: 70

Free Beer TomorrowThe potential pitfalls of open source licenses depend on what kind of license the project uses.

There are two basic kinds of licenses:


  1. Free-beer licenses (e.g., Apache): which place minimal restrictions on how the source code is used.

  2. Freedom-isn't-free licenses (e.g., GPL): such as GPL which require anyone who modifies the source code to redistribute their modifications under the same license.

The problem with free beer licenses is that they provide no incentive for a commercial company to provide long term support and upgrades. This is fine when the company behind the project has deep pockets and non-economic reasons to support the project. For example, IBM supports Eclipse because they want to keep Microsoft tools out of the data center.

The problem with freedom isn't free licenses is that they restrict the adoption of the project and hence endanger the growth of the community. Because users are more restricted in what they can do with the open source code, they may be more inclined to use a different product with a more permissive license.

By and large, all the commercial open source companies are moving to GPL-based licenses. Otherwise they could see big competitors swoop in and suck up all their work into a competiting offering.


You do not have flash or javascript support.
 
Wed, Jun 4, 2008 10:35 EDT
Re: Free Beer VS Freedom Isn't Free OSS Licenses
Posted by: bobsutor
Rating:

I think it is an oversimplification to say "IBM supports Eclipse because they want to keep Microsoft tools out of the data center". IBM uses many licenses (probably most of them) and of course uses GPL with Linux. Might you also conclude "IBM supports GPL because it wants to keep Microsoft out of the data center"? Since you only offer two kinds of licenses, is IBM just being a competitor and using different tools to do it? Presumably there are some as well that have nothing to do with open source.

I'm not saying what IBM (my employer) is or is not doing, but please don't look at one or another type of open source license and generalize to what is a multi-faceted company strategy. Business models are more sophisticated than just making a decision to use GPL, Eclipse, or whatever.

You do not have flash or javascript support.

Post new comment

* Subject:
* Username:
* E-mail:
The content of this field is kept private and will not be shown publicly.
Homepage:
* Body:
  • Allowed HTML tags: <a> <em> <strong> <cite> <code> <ul> <ol> <li> <dl> <dt> <dd> <img> <blockquote> <strike> <p> <br>
  • Lines and paragraphs break automatically.
More information about formatting options

* Denotes required field.
About this Blog

Our visiting guests discuss the topic of the week.

Start a Conversation
Click to post

Got something to say? We want to hear it! Click the Post button to get started. GO»

EXPERT ADVICE
See our roster of experts.

Advice & Opinion from more than 113 of IT's most insightful thinkers.

  PARTNERS       WEBCASTS    
 

Windows 7 Webcast Series

There's a lot of buzz about Windows 7 out there. Each month in our webcast series, listen to analysts and customers discuss how Windows 7 and the Windows Optimized Desktop is impacting large companies around the world. Learn how they evaluated Windows 7, including the cost of deployment, deployment strategies, and tangible benefits.

Sponsored by Microsoft  Listen to on-demand Recordings »

 

Service Level Management Best Practices Life Cycle Overview - Improve Service Levels

Best practices for Service Level Management (SLM) is a process for consistently meeting customer requirements and delivering on IT's promises. See the steps required to ensure high-quality SLM.

Sponsored by Compuware  Read this White Paper »

 

Keeping Your Members Safe from Online Scams and Predators

In order to keep fraudsters out, romance sites must deploy effective solutions that look at information independent of what is supplied by users. A device fingerprinting solution such as iovation ReputationManager™ provides unique insight into the computers being used to create multiple accounts and exposes hidden device-account relationships that identity-based fraud solutions often miss.

Sponsored by iovation  Read this White Paper »

More Partners »
Resource Alerts

Get instant email notifications by topic when white papers, webcasts, and case studies are added to our library.

More Podcasts »
Resource Alerts

Get instant email notification when white papers, webcasts, and case studies are added to our library. Don't just be up-to-date—be up to the minute with our new Resource Alerts.

Defend Against Blended Threats: What You Need to Know

Blended Web and email threats are becoming increasingly complex and represent a huge...  View Now »

 

Prescriptive Actions to Reduce Risk

In this Webcast, learn best practices for effective systems management in a heterogeneous environment and keep client systems cost under control.   View Now »

 

Webcast- Vantage 11: Redefining Application Performance Management

Compuware's latest release, Vantage 11, is a major advance in end-to-end application performance management--bringing together proactive issue identification, quantification of business impact and problem resolution into a single solution. Tune in to learn how Vantage 11's top-down approach helps you make better decisions and dramatically lower operations costs.  View Now »

More Webcasts »
Resource Alerts

Get instant email notification when white papers, webcasts, and case studies are added to our library. Don't just be up-to-date—be up to the minute with our new Resource Alerts.

 
NEWSLETTER

Sign-up for the Blogs & Discussion Newsletter

 
FEATURED SPONSORS
 
 
 
SPONSORED LINKS
 

Return on Information: Google Enterprise Search pays you back. Get the facts.

VMware. The source for Business Infrastructure Virtualization.

ShoreTel tells businesses to untangle from competitors' complexity and turn to its brilliantly simple UC solution

See how AT&T can help protect your network.

Streamline IT Costs. Boost Performance with WAN Optimization.

Build your 1st app FREE with Force.com

TDWI checklist helps define data readiness for analytics. Download report.

A Clear View Toward Virtualization

Virtualization Technology as a Business Solution

The rules of infrastructure management just changed.

A Clear View Toward Virtualization

Interactive Q&A helps you discover key ways to maximize IT assets.

Ready to virtualize tier one applications? Check your virtualization maturity.

Think you can't afford a Cisco Switch? Cisco Catalyst Switches are now more affordable.

Five minute business analytics assessment. Immediate results.

The Case for Investing in Business Analytics Technology. Read white paper.

Upgrading to VMware vSphere with vWire

Top 10 Lessons Learned for Corporate 3G Mobile Broadband Deployments

CRM Built for IT: The Executive Guide to Selecting CRM that Meets IT Needs

Return on Information: Google Enterprise Search pays you back

ROI of Application Delivery Controllers

Making Consumer Two-Factor Authentication Simple and Cost-Effective

Mining the Cloud to Ease the Enterprise Compliance Burden

Solve Five Key IT Security Challenges with Cloud-Based Authentication

White Paper: Right-Sizing Your Power Infrastructure

AT&T Synaptic Storage as a Service. Expand on demand

Trend Micro ranked #1 against real-world malware. Read more.

Webinar: Jump-start your in-house e-discovery with Ringtail QuickCull from FTI Technology

Top Five CIO Challenges

Read the RSA report: Security for Business Innovation

64-page prescriptive guide to security, compliance, and IT operations.

Increase UPS efficiency without sacrificing protection.

eZine: A Roadmap to Reducing IT Complexity

Reduce risk, gain agility. See how Progress can help your business.

Virtualization Technology as a Business Solution

eZine: A Roadmap to Reducing IT Complexity

World-class trading technology solutions from NYSE Technologies.

If You're Paying for Telecom, You're Paying Too Much. Contact Asentinel Today.

Trade-In your old printer and save up to $1,000 plus free recycling!

infoBOOM! - The Mid-Sized Company CIO's Exclusive Community

Live Webinar: Applying Business Analytics. Click here to learn more

Removing Barriers To Better Server Virtualization Efficiency

4G Revisited. The Continued Evolution of Wireless Mobility.

What's Next for Enterprise Resource Planning?

Maximizing website Return on Information with high-quality search

Gartner Magic Quadrant, Application Delivery Controllers 2009

Authentication as a Service by Forrester Research

Cloud-Based Authentication for Next-Generation Extranets

Cut Costs & Green Your IT Operations with PC Power Management

White Paper: 4 Customer Service Myths