Date   

MOVED: Our telco work group meetings for June are moving from 1st June to 8th June

 

Please see the updated calendar invites attached to this email and/or the OpenChain Global Calendar.

This move is at the request of Marc-Etienne due to a scheduling conflict.


China Roadshow: OpenAtom Global Summit 2023 – June 11-13

 

As part of our outreach roadshow in China during May and June, the OpenChain Project is participating in-person at many events. However, time does not permit to attend all, and we are both fortunate and grateful to be able to continue the roadshow with recorded speeches for other critical events. For example, the excellent OpenAtom Global Summit will feature a speech by Shane Coughlan, OpenChain General Manager, as it runs from June 11th to 13th.
https://www.openchainproject.org/news/2023/05/29/china-roadshow-openatom-global-summit-2023-june-11-13


China Roadshow: Greetings to Shanghai Open

 

Shane Coughlan, OpenChain General Manager, has been connecting with new open source communities as part of his recent trip to China. After meeting with the leadership of Shanghai Open, and discussing ways we can work together, he recorded a special video greeting for the next meeting. As a unique twist, he attempted the first two sentences in China. We apologize for his complete failure to pronounce things properly.
https://www.openchainproject.org/news/2023/05/29/china-roadshow-greetings-to-shanghai-open


China Roadshow: OpenChain Meeting in Beijing – 2023-06-01

 

The OpenChain Project is proud to announce that we are holding a community meetup on the 1st of June in Beijing. As you can see from the image above, a ton of organizations and companies are supporting this initiative. Our schedule includes international perspectives with Mary Wang, Director of Open Source Ecosystem at Volvo Cars in Sweden giving a key talk, as well as some great talks from local speakers.

Check Out The Event Website


New OpenChain Mascots – Keeping The Community Fun

 

Eagle-eyed members of the community will have noticed new mascots appearing gradually over the last couple of weeks around the OpenChain Project material and events. These new mascots for 2023 have been created by Soim Kim of the OpenChain Korea Work Group, and represent a new way to add a playful feel to community outreach. The basic concept is pretty simple: around open source people often use penguins (like we have done for the past five years), but what about all the other wonderful creatures from cold climates? Snow foxes, polar bears and so many more? Well… OpenChain is here to the rescue. We are featuring them all! Over time it is hoped that we can build our new friends in various different poses to help make sure they offer great support to all that we do.

In the near term you will find them in plenty of variants already, and you can expect to see stickers, mugs, t-shirts and many more things appearing at events and at our work group meetings in the coming months. You can download our new images and play with them via the OpenChain GitHub repo for image assets:

Naturally you can still use our traditional penguins too. These dear friends are part of our history and have provided a splash of color to all sorts of slides, handouts and other material.

You will always find them in the image assets repo as well:
https://github.com/OpenChain-Project/Image-Assets/tree/master/Official/Penguin-Images

The OpenChain Project community is an amazing place. We do a lot of corporate outreach, planning and execution. But we also do a lot of community meetings, events and workshops. Balancing our day-to-day work requirements and the additional opportunities for personal and professional networking is part of our DNA.


OpenChain Education Work Group – 2023-05-25 – Recording

 

As per the previous meeting, work was focused on the supplier education leaflet. We are getting close to an updated release version and your review would be super useful. This document will be formatted for PDF distribution (as well as MarkDown final source), and is targeted towards being a “one attachment” way to get your suppliers up-to-speed on the basics needed for open source, compliance and security assurance.

Learn more:


OpenChain Legal Work Group – 2023-05-25 – Overview and Recording

 

The OpenChain Legal Work Group is exploring model provisions for OpenChain ISO/IEC 5230 or ISO/IEC DIS 18974 in procurement contracts and similar material. We decided to proceed via mirroring the format of the pre-existing public domain Risk Grid:
https://github.com/OpenChain-Project/Reference-Material/tree/master/General-Compliance-Support-Material/Risk-Grid

Our Current Draft Language Is Hosted On GitHub
https://github.com/OpenChain-Project/Reference-Material/tree/master/Adoption-Preparation/Model-Provisions

Check out the recording of our meeting and the slides here:
https://www.openchainproject.org/featured/2023/05/26/openchain-legal-work-group-2023-05-25-overview-and-recording

The next meeting is scheduled for June 29th at 09:00 PDT / 16:00 UTC / 18:00 CEST / 00:00 CST / 01:00 KST + JST

Anyone can join our mailing list to track our work and contribute to the development of the model provisions:
https://lists.openchainproject.org/g/legal-wg

Reminder:
The goal is to ensure people can understand options. We will not be prescriptive and these model provisions will remain part of the OpenChain reference material. They will not be included in the standards themselves.


China Roadshow: OpenChain Open Source Governance Conference – 2023-06-03

 

The OpenChain Project, in collaboration with CAICT, SecTrend and Huawei, will host a governance conference in Shenzhen on the 3rd of June. We have a stellar schedule that will cover all aspects of open source management and processes. Shane Coughlan, OpenChain General Manager, will be there to provide a global perspective, and our local speakers will provide deep insight into matters of key strategic concern to the Chinese market.

Learn more:
https://www.openchainproject.org/featured/2023/05/25/china-roadshow-openchain-open-source-governance-conference-2023-06-03


China Roadshow: OpenChain @ OSCAR

 

Shane Coughlan, OpenChain General Manager, will speak at the forthcoming OSCAR event hosted by CAICT and CCSA. He will explain the latest developments around open source license compliance and security assurance process standards, along with global activities of note for the audience.

Learn more:
https://www.openchainproject.org/news/2023/05/25/china-roadshow-openchain-oscar


China Roadshow: OpenChain @ GOTC

 

OpenChain will be featured as part of the forthcoming GOTC event in Shanghai. This event will include an OSPOCon track, and Shane Coughlan – OpenChain General Manager – will update the audience on the latest developments around open source process standards for license compliance and security assurance.

Learn more:
https://www.openchainproject.org/news/2023/05/25/china-roadshow-openchain-gotc


OSPO Local Meetup # 8 – Japan (Japanese Speaking) – 2023-05-26

 

The OSPO Local Meeting for Japan will hold its 8th meeting today at 15:00 JST. Learn more below.
https://www.openchainproject.org/news/2023/05/25/ospo-local-meetup-8-japan-japanese-speaking-2023-05-26


Legal Work Group Call 2 - Provisional Outcomes

 

Well done everyone! Fantastic discussion.

Our current draft document is here:
https://github.com/OpenChain-Project/Reference-Material/blob/master/Adoption-Preparation/Model-Provisions/openchain-standards-model-provisions.0.2.md

Further discussion will be occurring to revise and improve. Next call in one month. Meanwhile, full update on this call coming in the next couple of days along with the recording.


Re: REMINDER: OpenChain Legal Work Group Call - 25th May at 09:00 PDT

 

Here is our dial in:

On May 25, 2023, at 18:12, Shane Coughlan <scoughlan@...> wrote:

Dear all

A reminder that the OpenChain Legal Work Group is meeting today (25th May) at 09:00 PDT.

We are working on model provisions to help legal departments think through our standards in the context of procurement. Review the outcomes of our previous meeting here:
https://www.openchainproject.org/news/2023/05/15/2nd-meeting-legal-wg

Join the call here:
https://zoom.us/j/96098580398

NOTE: this is not our usual Zoom link. We are using a different one because the education work group is meeting at the same time.

See attached calendar invite for more details.

Regards

Shane
<OpenChain Legal Work Group Meeting - Model Provisions for Procurement Discussions and Contracts.ics>


Re: REMINDER: OpenChain Education Work Group Call - 25th May at 09:00 PDT

 

Reminder that the Education Work Group call takes place at 09:00 PDT / 16:00 UTC / 18:00 CEST on the 25th of May. In Asia 00:00 CST / 01:00 KST + JST, 26th May.

See attached calendar invite for more details.

Join here:
https://zoom.us/j/4377592799

On May 25, 2023, at 17:57, Shane Coughlan via lists.openchainproject.org <scoughlan=linuxfoundation.org@...> wrote:

Dear all

A reminder that the OpenChain Education Work Group is meeting today (25th May) at 09:00 PDT. Nathan will lead the discussion around the supplier education leaflet, and he will also table new reference material work.

See attached calendar invite for more details.

Join here:
https://zoom.us/j/4377592799

Regards

Shane





<OpenChain Education Work Group Call.ics>


REMINDER: Legal Work Group Meeting Today (25th May) at 09:00 PDT / 16:00 UTC / 18:00 CEST / 00:00 CST / 01:00 KST + JST

 

I have created the first spin of the Model Provisions document based on the Risk Grid to get the conversation started:
https://github.com/OpenChain-Project/Reference-Material/blob/master/Adoption-Preparation/Model-Provisions/openchain-standards-model-provisions.0.1.md

This is *not* intended to be a workable solution. It is intended to help us brainstorm on the call.

The call starts at 09:00 PDT / 16:00 UTC / 18:00 CEST on the 25th of May. In Asia 00:00 CST / 01:00 KST + JST, 26th May.

Join here:
https://zoom.us/j/96098580398

Provisions included below for reference.

# Overview

This is a document to explore model provisions for OpenChain ISO/IEC 5230 or ISO/IEC DIS 18974 in procurement contracts and similar material. It is based on the public domain Risk Grid version 12 hosted in the OpenChain Reference Library on GitHub:
https://github.com/OpenChain-Project/Reference-Material/blob/master/General-Compliance-Support-Material/Risk-Grid/risk-grid-12.md

The goal of this document is to ensure people can understand options. We will not be prescriptive and these model provisions will remain part of the OpenChain reference material. They will not be included in the OpenChain standards themselves.

# Structure:

Each issue is formatted as follows:

- Issue
- Commentary
- Who is best placed to bear risk?
- Best mechanism to tackle risk
- Sample Wording
- Supplier's Arguments
- Customer's Arguments

# Overarching Topics

## Issue - Inclusion of OpenChain ISO/IEC 5230

### Commentary

None listed.

### Who is best placed to bear risk?

Supplier.

### Best mechanism to tackle risk

None listed.

### Sample Wording

The Supplier warrants that the Software originates from an OpenChain ISO/IEC 5230:2000 Conformant Program [under the control of the Supplier / under the control of a provider to the Supplier].

The Supplier [further] warrants that[, so far as it is aware,] the Software complies the Program Guidelines provided by OpenChain ISO/IEC 5230:2000 at the time of delivery.

[The Supplier does not warrant that use, modification or further distribution by the Customer of the Software constitutes a continuation of adherence to OpenChain ISO/IEC 5230:2000 Program Guidelines].

### Supplier's Arguments

The Supplier may argue that the inclusion of these requirements or the extent of the requirements included introduce a cost-burden that need to be offset.

### Customer's Arguments

The Customer is receiving a potential liability regarding third-party intellectual property along with the Software deliverable from the Supplier. As such, it is reasonable to request that the Supplier adheres to international standards related to the licensing of this third-party intellectual property.

## Issue - Inclusion of OpenChain ISO/IEC DIS 18974

### Commentary

None listed.

### Who is best placed to bear risk?

Supplier.

### Best mechanism to tackle risk

None listed.

### Sample Wording

The Supplier warrants that the Software originates from an OpenChain ISO/IEC DIS 18974 Conformant Program [under the control of the Supplier / under the control of a provider to the Supplier].

The Supplier [further] warrants that[, so far as it is aware,] the Software complies the Program Guidelines provided by OpenChain ISO/IEC DIS 18974 at the time of delivery.

[The Supplier does not warrant that use, modification or further distribution by the Customer of the Software constitutes a continuation of adherence to OpenChain ISO/IEC DIS 18974 Program Guidelines].

### Supplier's Arguments

The Supplier may argue that the inclusion of these requirements or the extent of the requirements included introduce a cost-burden that need to be offset.

### Customer's Arguments

The Customer is receiving a potential liability regarding security along with the Software deliverable from the Supplier. As such, it is reasonable to request that the Supplier adheres to international standards related to the managing of security assurance related to the Software.


REMINDER: OpenChain Legal Work Group Call - 25th May at 09:00 PDT

 

Dear all

A reminder that the OpenChain Legal Work Group is meeting today (25th May) at 09:00 PDT.

We are working on model provisions to help legal departments think through our standards in the context of procurement. Review the outcomes of our previous meeting here:
https://www.openchainproject.org/news/2023/05/15/2nd-meeting-legal-wg

Join the call here:
https://zoom.us/j/96098580398

NOTE: this is not our usual Zoom link. We are using a different one because the education work group is meeting at the same time.

See attached calendar invite for more details.

Regards

Shane


CORRECTION - REMINDER: OpenChain Education Work Group Call - 25th May at 09:00 PDT

 

My apologies. The correct calendar invite is now attached. The previous one had the 10:00 PDT setting from last month. The correct time of the meeting is 09:00 PDT.

==

Dear all

A reminder that the OpenChain Education Work Group is meeting today (25th May) at 09:00 PDT. Nathan will lead the discussion around the supplier education leaflet, and he will also table new reference material work.

See attached calendar invite for more details.

Join here:
https://zoom.us/j/4377592799

Regards

Shane


REMINDER: OpenChain Education Work Group Call - 25th May at 09:00 PDT

 

Dear all

A reminder that the OpenChain Education Work Group is meeting today (25th May) at 09:00 PDT. Nathan will lead the discussion around the supplier education leaflet, and he will also table new reference material work.

See attached calendar invite for more details.

Join here:
https://zoom.us/j/4377592799

Regards

Shane


Registration now open for the next OpenChain UK Work Group meeting - 7th June 2023

 

Attending virtually is an option for those curious:
https://www.eventbrite.co.uk/e/openchain-uk-work-group-june-meeting-tickets-639269701887

The details for the June meeting of the OpenChainUK WorkGroup have now been announced:

  • Date: 7th June 2023 
  • Time: 12:00 – 17:00
  • Venue: First Light Fusion – Mead Road, Yarnton, Kidlington OX5 1QU

Please note

The meeting will also be available to join virtually. Please register as normal and login details will be sent to you prior to the meeting.

Numbers to attend the meeting in person may be limited, so we would encourage early registration.

If you are attending in person you will need to bring a photo ID with you (driving license / passport. Company ID / business cards cannot be accepted). 

With the current roadworks, road closures and train line closures, we would advice attendees plan well in advance and leave in good time.

Meeting Agenda

  • An update from Martin on the bitesized videos
  • An update from Finnian on the anonymised case study project
  • Case studies workshop
  • Discussion on testimonials: what license(s) to use, can/should we include OC logos (all or some versions), how do we ‘release’ the material and to whom?
  • Discussion of ‘OpenChain October’ with bitesize videos inspired by the Japan WG ‘advent calendar’.
  • Discussion around liaising with the Japan WG
  • Videoing of introductions and testimonials

Book

The meeting is free of charge, and is open to anyone (whether in the UK or otherwise) interested in finding out more about why companies of all sizes are embracing OpenChain.

To confirm your place either in person or virtually so that we can guage numbers, please complete the Eventbrite booking form.



OpenChain @ IAM

 

This news online:
https://www.openchainproject.org/news/2023/05/24/openchain-iam

OpenChain @ IAM

Jimmy Ahlberg (OpenChain Chairperson) and Eleftheria Stefanaki have published an article entitled ‘Efficient IP management in a market increasingly using open source’ on IAM.

From The Article

Imagine finding out that 90% of the software in your products is not yours but only licensed in as third-party IP.  As soon as you start reading the agreements, you realise some of them contain terms you are not familiar with or have never even heard of before, such as “source code”, “binary”, “object code”, and “system libraries”. Moreover, you cannot find basic contractual provisions such as “governing law” or “jurisdiction” in the agreements. These agreements (and there are hundreds of them) are all different, non-negotiable, ‘take-it-or-leave-it’ standard template licences.

[…]

Against this background, this article describes the significance of open source management in the context of IP management. We would like to introduce you to the OpenChain Specification 2.1 (ISO/IEC 5230:2020) on open source licence compliance, and the benefits of implementing such a programme within the framework of your existing IP management.

Read The Article

Registration required.

About IAM

IAM is the trusted source of worldwide news, analysis and data on the management of intellectual property as a key business asset. It keeps in-house counsel up to speed with the global issues and strategies that matter, giving you the detail and depth you need to operate successfully.