Skip to main content
All Posts By

Shane Coughlan

Shane Coughlan is an expert in communication, security and business development. His professional accomplishments include spearheading the licensing team that elevated Open Invention Network into the largest patent non-aggression community in history, establishing the leading professional network of Open Source legal experts and aligning stakeholders to launch both the first law journal and the first law book dedicated to Open Source. Shane has extensive knowledge of Open Source governance, internal process development, supply chain management and community building. His experience includes engagement with the enterprise, embedded, mobile and automotive industries.

OpenChain Onboarding Mini-Summit – 2022-08-01

By Featured, News

We discussed one of the most critical aspects of our project outside of the ISO/IEC 5230 standard: how do we onboard people? It covered outreach, what happens when people arrive on our site, and how we arrange community support.

We looked for input around:
(1) How should we “market” OpenChain?
(2) How can entry to our website and community work best for new participants?
(3) How can we do great community support regionally and globally?
(4) How should the Onboarding Committee of the project work in the future?

Nathan Kumagai, our onboarding chair, lead the discussion.

Call to Action: Playbooks – Meeting #1 – 2022-08-03

By Featured, News

We recently held our first meeting to review the OpenChain Playbooks. Above you will find the full recording.

For context: we are collaboratively editing version 2 of these documents at this link:

https://drive.google.com/drive/folders/1li9heH3x16MmC_UxxpFhWSw1XCwsAdbF?usp=sharing

Our focus during this call was the small company playbook here:

https://docs.google.com/document/d/1x0fVeJbzWlh5vRkUfkWbkKgaiPaNtcVCIqgDESLzBbY/edit?usp=sharing

The work we did on this playbook substantially refined the approach in the early parts of the document and will be merged into the other documents (for medium and large companies) ahead of our next meeting in around a week.

Your contributions and comments are most welcome. This is a great opportunity to brief and encourage strategic management understanding and support of effective, efficient compliance.

KKCompany Receives The First OpenChain ISO/IEC 5230 Third-Party Certification in Taiwan

By Featured, News

KKCompany, a leading media technology group in Asia, today received the first OpenChain ISO / IEC 5230 third-party certification in Taiwan. KKCompany is cooperating with Open Culture Foundation (OCF) and Bureau Veritas to successfully meet certification requirements. Together with KKBOX, KKStream, and other relevant business units in the group, KKCompany delivers innovative products and services with open source technologies. It also sponsors open source communities and incentivizes employees to contribute their technical experiences. KKCompany will continue to support communities. With open and sharing in mind, it is committed to a trustworthy software supply chain and an open source ecosystem with technology partners.

“KKCompany believes in the power of technology to provide solutions and tackle challenges faced by various industries today,” said KKCompany Group President & COO Steve Wang. “Empowering creators has always been the core of our philosophy. We value the creations of creators and developers. This OpenChain ISO/IEC 5230 certification further demonstrated our commitment to creators and developers.”

The OpenChain Project was established in 2016 by The Linux Foundation. Its mission is to increase trust in the global supply chain around the use of open source software. The project is best known for developing ISO/IEC 5230, the International Standard for open source license compliance. The ISO/IEC standard, released in 2020, has helped to make process for managing open source more effective and efficient, reducing resources spent and increasing the speed of products to market.

“KKCompany’s OpenChain ISO/IEC 5230 third-party certification underlines their commitment to operating a quality open source compliance program,” said Shane Coughlan, OpenChain General Manager, “The processes they have adopted provide substantial benefit in reducing errors, fixing any issues that arise, and decreasing time spent bringing products and services to market. KKCompany is the first company in Taiwan to obtain third-party certification, a step that illustrates how they value creator rights and support open source technologies. With leadership from companies like KKCompany, we aspire to expand our coverage in Asia further into the supply chain, and promote excellence in open innovation.”

As supply chains in tech industries become fragmented, vertical and horizontal collaborations have become the norm. Enterprises need to monitor if their source codes comply with licensing terms, and also ensure compliances from suppliers. With OpenChain ISO/IEC 5230 and third-party audits, it is possible to integrate open source compliance into business processes. This practice reduces risks on operation and reputation, and manages software components easier.

OCF has been promoting open source codes for years. “Open source codes do not ‘reinvent the wheel’,” said OCF Chief Executive Officer Singing Li. “Open and sharing are a global trend that enhances enterprise development efficiency. OCF serves as an advisor to KKCompany in the OpenChain ISO/IEC 5230 certification process. We support the group to pass compliance and audit requirements. It’s a milestone for Taiwanese companies to align with international industry chains.”

OpenChain ISO/IEC 5230 is the first and only International Standard for open source license compliance. The standard allows companies of all sizes and sectors to adopt the key requirements of a quality open source compliance program in order to reduce inherent risk in supply chain management.

Pascal LE-RAY, the General Manager of Bureau Veritas Consumer Products Services Technology Taiwan, said, “Bureau Veritas has become the first OpenChain certifier in Greater China in 2021. We are delighted to have this opportunity to support KKCompany to successfully obtain the first ISO/IEC 5230 Certificate in Taiwan, which demonstrates that KKCompany’s capabilities in open source application is not only proven, but also effectively enhances the sense of trust within the industry. This cooperation represents collaboration between Bureau Veritas’ deep expertise and experience, and KKCompany’s effective compliance practices. Furthermore, OpenChain aids open source transparency by using software bill of material to identify and manage security vulnerabilities that synergize with cybersecurity standards to reduce compliance and security risks effectively. We look forward to continuing to promote the development of open source technology and develop an open source ecosystem in the future.”

About KKCompany

KKCompany is Asia’s leading media technology group headquartered in Taipei, Taiwan. The company’s mission is to make transformational technology accessible, affordable and enjoyable to the burgeoning global creator economy. KKCompany Receives the First OpenChain ISO/IEC 5230 International Open Source Third-Party Certification in Taiwan.For more information and updates, please visit our [Website] www.kkcompany.com / [Blog] blog.kkcompany.com

OpenChain @ ApacheCon Asia

By News

OpenChain took centerstage at ApacheCon on the 30th of July with a project and ISO/IEC standard overview.

Open source, the supply chain, and compliance are central to modern trade. License compliance has been joined by security compliance as central to trade. In this keynote Shane Coughlan, GM of the ISO standard for open source license compliance will explain what his community and other adjacent communities are doing to make things quicker, safer and more efficient.

Learn More:

Webinar: LEX PAN LAW & OPSEQUIO and their OpenChain-Related Services

By community, legal, News, Partner Webinar, Webinar

This series highlights offerings from various service providers throughout the global OpenChain eco-system. Each featured partner has an official relationship with the project, whereby they may use our trademark for marketing OpenChain-specific services, and in exchange they help with community outreach, education and other aspects of collaborative (and free) support.




More About Our Webinars:

This event is part of the overarching OpenChain Project Webinar Series. Our series highlights knowledge from throughout the global OpenChain eco-system. Participants are discussing approaches, processes and activities from their experience, providing a free service to increase shared knowledge in the supply chain. Our goal, as always, is to increase trust and therefore efficiency. No registration or costs involved. This is user companies producing great informative content for their peers.

Check Out The Rest Of Our Webinars

This OpenChain Webinar was broadcast on 2022-07-28.

OpenChain Mini-Summit: Onboarding – August 1st 2022 at 14:00 UTC

By Featured, News

It is time for another OpenChain mini-summit! This time we are going to be discussing one of the most critical aspects of our project outside of the ISO/IEC 5230 standard for open source license compliance: 

How do we onboard people *to* the standard and to our broader community? 

This topic covers outreach, it covers what happens when people arrive on our site, and it covers how we arrange community support.

We would really value your input in this event as we discuss:

  1. How should we “market” OpenChain ISO/IEC 5230?
  2. How can entry to our website and community work best for new participants?
  3. How can we do great community support regionally and globally?
  4. How should the Onboarding Committee of the project work in the future?

Nathan Kumagai, our chair, will lead the discussion.

Register in advance for this Mini-Summit:

After registering, you will receive a confirmation email containing information about joining the webinar.

Check your timezone:

  • PDT United States Pacific UTC-07:00
  • UTC Coordinated Universal Time UTC
  • CET Central European Time UTC+01:00
  • IST India Standard Time UTC+05:30
  • CST China Standard Time UTC+08:00
  • KST Korea Standard Time UTC+09:00
  • JST Japan Standard Time UTC+09:00

Compare timezones:

RIOS Open Source Hardware IP Licensing and Policy Workshop 2022 – Full Recording

By News

The OpenChain Project featured prominently at an open hardware event held in China on July 1st. This is part of our long-term commitment to supporting a trusted supply chain, and an awareness that the supply chain will inevitably consist of both hardware and software.

Check out our (and other) speeches from the event:

https://rioslab.org/riosmeeting/exsythemes/

About the event in their own words:

RIOS Lab is an open source lab founded by Prof. David Patterson, the inventor of RISC. We are committed to contributing to the open RISC-V ecosystem. In the last two years, RIOS Lab has launched several legal research projects on OSH IP protection collaborating with top research institutes, law firms, and leading companies in the microprocessor industry. In these projects, we conduct microprocessor patent analysis, and study its potential impact or threats to RISC-V as well as OSH in general.

Feeling the need to further raise the awareness of the importance of open source hardware IP protection and licensing, RIOS Lab is organizing a workshop series that invites policymakers, open source community leaders, academic researchers, and legal professionals and experts around the world to discuss the legal issues the OSH community is facing. 

OpenChain Japan All Member Meeting #24 – 2022-07-29

By Featured, News

The OpenChain Japan Work Group will hold its 24th all member meeting (11th virtual meeting) on July 29 (Friday) between 15:00 and 16:00 Japan Standard Time (JST). The primary discussion will be around the open source program office (OSPO) of Cybertrust. OSPO activity is an emerging topic in this jurisdiction and all are welcome to participate.

Join us via Zoom:

https://zoom.us/j/99975267803?pwd=ekhxaHA3bVZUSVU5M0dVMkF2Z0pkQT09

The meeting ID is:

99975267803

The password is:

]>guXS~6