LSware, a company providing Compliance Availability Protection and Security (CAPS) services, has announced an OpenChain ISO/IEC 5230 conformant program. Delivering SecuMS, Omniguard, and FOSSERA and other solutions to the Korean market, LSware is committed to supporting an effective, efficient supply chain.
“We are delighted to welcome LSware to the OpenChain community of conformance,” says Shane Coughlan, OpenChain General Manager. “Korea has been a market of exceptional engagement with our standards for open source license compliance and security assurance, and this represents another example of innovation and leadership in that geography.”
The latest meeting of the OpenChain Export Control Work Group covered an extraordinary amount of ground. There is a proposal for the inclusion of export control information in a future revision of SPDX, and we had both a presentation about that work alongside the opportunity to comment on it. This recording is highly recommended as an onboarding point to our work group.
Want to be involved? You can join the mailing list at this link:
https://lists.openchainproject.org/g/export-control-wg/messages
Korea Telecom (KT), South Korea’s largest telecommunications operator, has announced an OpenChain ISO/IEC 5230 Conformant Program. With 50,000 employees group-wide, KT has a long history in open source engagement, and has operated a dedicated team for its management since 2012.
KT operates a significant amount of automation for open source process management, and has pioneered solutions like K-COMPASS for open source project registration, review, verification and usage. It maintains courses in its own training system call Genius to help ensure new employees and developers understand their role in promoting excellence around open source.
KT’s decision to adopt ISO/IEC 5230 was based on a strategic interest in aligning with international standards for managing the supply chain. In a year-long process adjustment, the open source team ensured that all operational activities were not disrupted, but all aspects of the KT open source program matched the requirements outlined in the International Standard for open source license compliance.
“Today’s announcement marks an important milestone not only for the Korean supply chain but also the global management of open source in the telecommunications industry,” says Shane Coughlan, OpenChain General Manager. “With companies like Ericsson and Nokia chairing the OpenChain Board and our Telco Work Group respectively, it has long been clear that our approach to standardization resonates in this market vertical. However, major conformance announcements like this as a clear lighthouse indicating the path to the future of the supply chain. I want to commend the team involved, and also to thank them for far more than announced today. KT has been part of the OpenChain community for a while, and hosted one of our workgroups in 2019 at their KT DS Seoul headquarters. They have a clear understanding of how this community works, and how it drives business value through collaboration.”
Vectorverse, a company providing cloud analytics, has announced an OpenChain ISO/IEC 5230 conformant program. They join a growing community of entities in the cloud sector embracing the international standard for open source license compliance.
The Vectoverse Website
Newsletter – Issue 59 – October 2023
The OpenChain Newsletter provides a monthly summary of our work. It contains an overview of what we are doing to build trust around license compliance and security in the open source supply chain. We accept suggestions and ideas. Feel free to mail us at any time.
Headline News
Outreach
- OpenChain October – A Video Project
- OpenChain Japan Work Group Meeting #29 (Hybrid #4) – 2023-10-05 @ SocioNext in Kyoto
- OpenChain Open Source Seminar China – 2023-10-16
Webinars
- None this month.
Meetings
Our community held the following meetings:
- OpenChain Monthly Meeting North America and Europe – 2023-10-03
- OpenChain Export Control Work Group 2023-10-03
- OpenChain Automation Work Group – 2023-10-04
- OpenChain Telco Work Group – 2023-10-05
- OpenChain Monthly Meeting North America and Asia – 2023-10-17
Check Out All Our Previous Newsletters:
The OpenChain Japan Work Group recently held a meeting. As usual, it contained some great presentations and discussion. The recording of the meeting is now available below.
(Big thank you to Owada San for preparing the recording!)
We will be shutting down the OpenChain Self Certification Web Application on October 31st 2023. The Web Application has been replaced by the Online Certification Checklist.
If you have an account on the web application and would like to save your responses, you can use the “Download Answers” button on the survey page:
Let us know if you have questions.
We had a super busy call focused on editing update proposals for our core specifications (licensing and security) and editing new proposals for potential future specifications (contribution and SBOM quality). Full recording below.
On OpenChain ISO/IEC 5230 (licensing) we closed this issue:
On OpenChain ISO/IEC DIS 18974 (security) we closed this issue:
For harmonization between ISO/IEC 5230 and ISO/IEC DIS 18974 we closed this issue:
On the proposal for a contribution specification we addressed this issue:
Check out the slides from the call for all the relevant links:
