Shane Coughlan, OpenChain General Manager, was invited to present an overview of the OpenChain Project and its ISO standards to the FINOS Open Source Readiness SIG. The full recording is below.
Newsletter – Issue 65 – April 2024
The OpenChain Newsletter provides a monthly summary of our work. It contains an overview of what we are doing to build trust around license compliance and security in the open source supply chain. We accept suggestions and ideas. Feel free to mail us at any time.
Headline News
- Volvo Cars Announces An OpenChain Conformant Program
- emlix Announces An OpenChain ISO/IEC 5230 Conformant Program
Outreach
Webinars
- OpenChain Webinar: Eclipse Apoapsis
- Webinar: LF Management & Best Practices Portal
- Webinar: OFE Briefing on the Cyber Resilience Act
Meetings
Our community released the following meeting recordings via our main channel:
- OpenChain Monthly North America – Europe Call – 2024-04-02
- OpenChain AI Study Group – Monthly Workshop for North America and Europe – 2024-04-02
- OpenChain Telco Work Group Meetings – 2024-04-04
- OpenChain Education Work Group Monthly Meeting – 2024-04-10
- OpenChain AI Study Group – Europe and Asia Recap – 2024-04-11
- OpenChain Monthly North America – Asia Call – 2024-04-16
Note: Some community meetings are not recorded or are released through other channels
Check Out All Our Previous Newsletters:
May is coming fast, and ahead of that it is time to catch up on the recording of the most recent North America / Asia call, where we edited proposed next generation versions of our licensing and security specifications.
We covered two open GitHub issues on this call:
Security Assurance Review:
– Expand definitions section for (1) Secure Software Development to include Secure Programming Techniques and (2) Security Testing to include Static and Dynamic
https://github.com/OpenChain-Project/Security-Assurance-Specification/issues/36
License Compliance Review:
– Verification Material For Training – next iteration
https://github.com/OpenChain-Project/License-Compliance-Specification/issues/38
Check out the full recording here:
Be part of this:
You can join our calls (and our mailing lists) by following the instructions on our “Participate” page: https://openchainproject.org/participate
This week we have the following international meetings:
Wednesday 1st May:
– OpenChain @ FINOS Open Source Readiness SIG @ 14:00 UTC
– OpenChain Education Work Group – Monthly Meeting @ 16:00 UTC
Thursday 2nd May:
– OpenChain Telco Work Group Meeting (European Morning) @ 07:00 UTC
– OpenChain Telco Work Group Meeting (European Afternoon) @ 14:00 UTC
You can check out all our international meetings and get instructions on adding our calendar to your client here:
This webinar is a special briefing lead by Ciarán O’Riordan, Senior Policy Advisor at OpenForum Europe (OFE), on European policy matters that impact open source, business processes and risk management. OFE is a not-for-profit, Brussels-based independent think tank which explains the merits of openness in computing to policy makers and communities across Europe. Originally launched in 2002 to accelerate and broaden the use of Open Source Software (OSS) among businesses, consumers and governments, OFE’s focus has since evolved to also cover issues related to Open standards, Cybersecurity, Digital Government, Public Procurement, Intellectual Property, Cloud Computing and Internet Policy.
More Details
“The proposal for a regulation on cybersecurity requirements for products with digital elements, known as the Cyber Resilience Act, bolsters cybersecurity rules to ensure more secure hardware and software products. Hardware and software products are increasingly subject to successful cyberattacks, leading to an estimated global annual cost of cybercrime of €5.5 trillion by 2021.”
https://digital-strategy.ec.europa.eu/en/library/cyber-resilience-act
Our Speaker is Ciarán O’Riordan, Senior Policy Advisor at OpenForum Europe. His background is as a free software / open source software policy and communications expert.
OFE is a not-for-profit, Brussels-based independent think tank which explains the merits of openness in computing to policy makers and communities across Europe. Originally launched in 2002 to accelerate and broaden the use of Open Source Software (OSS) among businesses, consumers and governments, OFE’s focus has since evolved to also cover issues related to Open standards, Cybersecurity, Digital Government, Public Procurement, Intellectual Property, Cloud Computing and Internet Policy.
https://openforumeurope.org/
More in the OFE Series
We held three special briefings from OFE for the OpenChain community from May to June 2024.
- You can check out the first webinar, covering the CRA, here:
https://openchainproject.org/news/2024/04/23/webinar-cyber-resilience-act - You can check out the second webinar, covering the EU AI Act, here:
https://openchainproject.org/featured/2024/05/30/webinar-eu-ai-act - You can check out the third webinar, covering the EU Product Liability Directive, here:
https://openchainproject.org/news/2024/06/13/webinar-eu-pld
More About Our Webinars:
This event is part of the overarching OpenChain Project Webinar Series. Our series highlights knowledge from throughout the global OpenChain eco-system. Participants are discussing approaches, processes and activities from their experience, providing a free service to increase shared knowledge in the supply chain. Our goal, as always, is to increase trust and therefore efficiency. No registration or costs involved. This is user companies producing great informative content for their peers.
Check Out The Rest Of Our Webinars
This OpenChain Webinar was broadcast on 2024-04-23.
This week we have the following international meetings:
Tuesday 23rd April:
– OpenChain Webinar: OFE Briefing on the Cyber Resilience Act @ 07:00 UTC
You can check out all our international meetings and get instructions on adding our calendar to your client here:
Tomorrow we are holding the OpenChain Webinar: OFE Briefing on the Cyber Resilience Act
2024-04-23 @ 07:00 UTC / 09:00 CEST / 15:00 CST / 16:00 KST + JST
This is a special briefing lead by Ciarán O’Riordan, Senior Policy Advisor at OpenForum Europe (OFE), on European policy matters that impact open source, business processes and risk management. OFE is a not-for-profit, Brussels-based independent think tank which explains the merits of openness in computing to policy makers and communities across Europe. Originally launched in 2002 to accelerate and broaden the use of Open Source Software (OSS) among businesses, consumers and governments, OFE’s focus has since evolved to also cover issues related to Open standards, Cybersecurity, Digital Government, Public Procurement, Intellectual Property, Cloud Computing and Internet Policy.
Get the dial-in details on the OpenChain Global Calendar at our “Participate” page:
https://www.openchainproject.org/participate
This webinar by Hilary Carter, SVP Research at The Linux Foundation, unpacked LF Management & Best Practices, the digital home where communities of “best practice” converge. Here, you’ll be able to find the standards, reference material, courses, live events and webinars, research, project communities, and the automation tools to help you start your project or organization’s open source journey, and to keep it on track!
More About Our Webinars:
This event is part of the overarching OpenChain Project Webinar Series. Our series highlights knowledge from throughout the global OpenChain eco-system. Participants are discussing approaches, processes and activities from their experience, providing a free service to increase shared knowledge in the supply chain. Our goal, as always, is to increase trust and therefore efficiency. No registration or costs involved. This is user companies producing great informative content for their peers.
Check Out The Rest Of Our Webinars
This OpenChain Webinar was broadcast on 2024-04-09.
Shane Coughlan, OpenChain General Manager, presented at Open Source Summit North America on the topic of how OpenChain ISO/IEC 5230:2020 and ISO/IEC 18974:2023 will impact procurement, M&A and supply chain management in 2024. This talk was targeted towards legal professionals, but accessible to all parties.
This talk was part of the new Operations Management Summit track developed in collaboration with LF Research. This new track compliments the recently launched LF Management & Best Practices portal. The goal is to make it easier for all parties working on open source management in organizations to find the resources they need.
Check out the full recording below.
This webinar had Marcel Kurzmann from Robert Bosch GmbH present the Eclipse Apoapsis project in general with its process level idea of an abstraction layer concept and the ORT-server on a technical level. In the second part of the webinar, he gave an introduction of the abstraction layer concept with a generic process description, the generic architecture and templates.
More About Our Webinars:
This event is part of the overarching OpenChain Project Webinar Series. Our series highlights knowledge from throughout the global OpenChain eco-system. Participants are discussing approaches, processes and activities from their experience, providing a free service to increase shared knowledge in the supply chain. Our goal, as always, is to increase trust and therefore efficiency. No registration or costs involved. This is user companies producing great informative content for their peers.
Check Out The Rest Of Our Webinars
This OpenChain Webinar was broadcast on 2024-04-09.
