This webinar was a simple overview of how companies can begin to engage with the OpenChain Project, the standard for open source license compliance it maintains, and use the reference material it provides.
Check Out The Rest Of Our Webinars
This is OpenChain Webinar #32, released on 2021-11-03.
You can join the Japan Work Group mailing list here:
The OpenChain Project often highlights global news. However, it is important to remember that the majority of activity is truly distributed around the world, especially in our local China, Japan, Korea, Taiwan, India, Germany, UK and US work groups. Today we are taking a moment to shine a spotlight on a specific example in Japan.
The OpenChain Japan Work Group operates seven sub-groups, one of which is focused on providing answers to frequently asked questions, chaired by Ouchi San from Fujitsu. The FAQ document produced by the group has been downloaded over 2,100 times so far, demonstrating the extent of information dissemination in a specific geography.
If you have a Japanese office (or you represent a Japanese company), please be aware that the FAQ sub-group meets on the 8th of November at 15:00 JST. All welcome.
・日時:11月8日(月) 15:00〜17:30
・チャタムハウスルールを採用しています。
(誰が言ったかは口外禁止、得た情報は自由利用可)
・オンライン会議(Zoom):
Zoom のURLはFAQ-SGのSLACKに掲載予定です。
(Japan WGのSLACKとは異なります)
以下のメーリングリストへご連絡願います。
We discussed the final steps necessary to turn this document into an online course. Balakrishna (our chair) has finalized details with the LF Training Team. They can release a version of the course for December 16th if we (a) close open comments on Chapters 1~5 and provide the final deliverable by end of November. Most of the work is done on Chapters 1~3, so our focus will be on filling out Chapters 4~5 in the short term, and then reverting to the early chapters for final review.
Join the Education Work Group at this mailing list:
CAICT, a scientific research institute directly under the Ministry of Industry and Information Technology (MIT) of China, is the latest OpenChain Project partner. They will be drawing on sixty four years of experience to offer third party certification support for OpenChain ISO/IEC 5230 in the Chinese market. Read their official statement in Chinese.
“Effective supply chain managed is more critical today than ever before,” says Shane Coughlan, OpenChain General Manager. “The size of the Chinese market offers both challenges and opportunities that can transform global trade. We are fortunate to work closely with companies like OPPO and Huawei on business optimization, and our new partnership with CAICT provides a new level of support for companies seeking effective, efficient management of open source software. As our first third party certified in Mainland China, we feel confident CAICT will act not only as a service provider but also as a lighthouse to offer support and structure to companies adopting and using OpenChain ISO/IEC 5230.”
About CAICT
Founded in 1957, the China Academy of Information and Communications Technology(hereinafter referred to as CAICT) is a scientific research institute directly under theMinistry of Industry and Information Technology (MIT) of China. It cherishes the culturalphilosophy of “Boosting prosperity with virtues and expertise” for years while adhering tothe development positioning of “a specialized think-tank for the government and aninnovation and development platform for the industry”. Committed to “the think-tank andenabler for innovation and development in an information society”, CAICT has providedstrong support for major strategies, plans, policies, standards, tests and certification forthe development of the national ICT sector and the IT application, thus proving itself animportant facilitator in the leapfrog development and innovation of China’s informationand communications sector. It has been granted hundreds of scientific and technologicalawards at both national and provincial levels.In recent years, with a view to adapting to the new eco-social backdrop andrequirements, CAICT has strengthened its efforts in innovation to achieve wider anddeeper research landscape. It has conducted in-depth research and foresighted planningin the fields of 4G/5G, industrial Internet, smart manufacturing, mobile Internet, Internet ofThings (loT), Internet of Vehicles (loV), cloud computing, big data, blockchain, artificialintelligence (Al), future networks, virtual reality/augmented reality (VR/AR), intelligenthardware, and cyber and information security. This enables CAICT to play an importantrole in strategy and policy study, technological innovation, industrial development, andinternational cooperation related to the ICT sector and the integration betweenindustrialization and informatization.
About OpenChain
The OpenChain Project maintains the International Standard for open source license compliance. This allows companies of all sizes and in all sectors to adopt the key requirements of a quality open source compliance program. This is an open standard and all parties are welcome to engage with our community, to share their knowledge, and to contribute to the future of our standard.
About The Linux Foundation
The Linux Foundation is the organization of choice for the world’s top developers and companies to build ecosystems that accelerate open technology development and industry adoption. Together with the worldwide open source community, it is solving the hardest technology problems by creating the largest shared technology investment in history. Founded in 2000, The Linux Foundation today provides tools, training and events to scale any open source project, which together deliver an economic impact not achievable by any one company. More information can be found at www.linuxfoundation.org.
The Linux Foundation has registered trademarks and uses trademarks. For a list of trademarks of The Linux Foundation, please see our trademark usage page: https://www.linuxfoundation.org/trademark-usage.
Linux is a registered trademark of Linus Torvalds.
OpenChain Japan community members were a key part of creating the Tokyo Metropolitan Government Open Source Software Disclosure Guidelines. Huge thanks to:
| 遠藤 雅人 | The Linux Foundation OpenChain Project Automotive Chair / Japan Work Group Promotion Sub Group Leader |
| 大崎 雅行 | The Linux Foundation OpenChain Project |
| 小保田 規生 | The Linux Foundation OpenChain Project |
You can find the details in Japanese here:
We talk Security Assurance Reference Guide. Updated version coming soon? Looks like it.
Stay up-to-date with our telco work group mailing list:
Check out our previous meeting:
SCANOSS is the latest company to announce participation in the OpenChain Project partner program.
“The standards promoted by the OpenChain Project have helped us to converge on a more interoperable SBOM that will further reduce friction in the software supply chain,” says Alan Facey, Chief Disruptor, SCANOSS. “SCANOSS exists to enable companies of all sizes to run a quality open source compliance program without having to rely on commercial vendor tools. Our partnership with OpenChain reinforces our commitment to the open source community and the ‘freedoms’ it embodies.”
“Automation is a key aspect of effective open source compliance,” says Shane Coughlan, OpenChain General Manager. “SCANOSS joins our partner program as another global vendor supporting software bill of materials in a manner that promises increased transparency and interoperability in the supply chain. Of particular note is their commitment to providing the scanning technology itself as open source, providing an additional layer of assurance regarding sustainability in a complex, fast moving market.”
About SCANOSS
SCANOSS is an open, configurable OSS Inventory engine that was built specifically for developers, empowering them to confidently produce compliant code from the moment they begin writing, while delivering greater license and usage visibility for the broader DevOps team and supply chain partners. With its open architecture that is easy to integrate into existing processes and toolchains, SCANOSS transforms software bill of materials (SBOM) creation from ‘write now, audit later’ to an always-on analysis of live code. By freeing developers to focus on writing great, compliant code that they and their team can completely trust, applications are finished earlier, quality is consistently higher, and development costs are dramatically lower.
About OpenChain
The OpenChain Project maintains the International Standard for open source license compliance. This allows companies of all sizes and in all sectors to adopt the key requirements of a quality open source compliance program. This is an open standard and all parties are welcome to engage with our community, to share their knowledge, and to contribute to the future of our standard.
About The Linux Foundation
The Linux Foundation is the organization of choice for the world’s top developers and companies to build ecosystems that accelerate open technology development and industry adoption. Together with the worldwide open source community, it is solving the hardest technology problems by creating the largest shared technology investment in history. Founded in 2000, The Linux Foundation today provides tools, training and events to scale any open source project, which together deliver an economic impact not achievable by any one company. More information can be found at www.linuxfoundation.org.
The Linux Foundation has registered trademarks and uses trademarks. For a list of trademarks of The Linux Foundation, please see our trademark usage page: https://www.linuxfoundation.org/trademark-usage.
Linux is a registered trademark of Linus Torvalds.
