Korea Telecom (KT), South Korea’s largest telecommunications operator, has announced an OpenChain ISO/IEC 5230 Conformant Program. With 50,000 employees group-wide, KT has a long history in open source engagement, and has operated a dedicated team for its management since 2012.
KT operates a significant amount of automation for open source process management, and has pioneered solutions like K-COMPASS for open source project registration, review, verification and usage. It maintains courses in its own training system call Genius to help ensure new employees and developers understand their role in promoting excellence around open source.
KT’s decision to adopt ISO/IEC 5230 was based on a strategic interest in aligning with international standards for managing the supply chain. In a year-long process adjustment, the open source team ensured that all operational activities were not disrupted, but all aspects of the KT open source program matched the requirements outlined in the International Standard for open source license compliance.
“Today’s announcement marks an important milestone not only for the Korean supply chain but also the global management of open source in the telecommunications industry,” says Shane Coughlan, OpenChain General Manager. “With companies like Ericsson and Nokia chairing the OpenChain Board and our Telco Work Group respectively, it has long been clear that our approach to standardization resonates in this market vertical. However, major conformance announcements like this as a clear lighthouse indicating the path to the future of the supply chain. I want to commend the team involved, and also to thank them for far more than announced today. KT has been part of the OpenChain community for a while, and hosted one of our workgroups in 2019 at their KT DS Seoul headquarters. They have a clear understanding of how this community works, and how it drives business value through collaboration.”
We had a super busy call focused on editing update proposals for our core specifications (licensing and security) and editing new proposals for potential future specifications (contribution and SBOM quality). Full recording below.
On OpenChain ISO/IEC 5230 (licensing) we closed this issue:
On OpenChain ISO/IEC DIS 18974 (security) we closed this issue:
For harmonization between ISO/IEC 5230 and ISO/IEC DIS 18974 we closed this issue:
On the proposal for a contribution specification we addressed this issue:
Check out the slides from the call for all the relevant links:
A special project by the OpenChain UK Work Group
The OpenChain UK Work Group has been busy preparing a series of videos to talk about OpenChain. The videos are being released through November and you can get a sample below.
Amazing work all! Special credit to Martin Yagi for pulling this together.
A Sample of the Videos Hosted on LinkedIn
- Are you ready to dive deep into Open Source License compliance?
- An introduction to OpenChain
- Quiz: The creation and management of a software bill of materials (SBOM)
You can follow the full series at the OpenChain UK LinkedIn page:
Bobble AI has submitted an OpenChain self-certification notification via the OpenChain Website.
Founded by a dynamic duo of brothers, Bobble AI is the world’s first Conversation Media Platform. Bobble.ai is on the mission of enriching everyday conversations by empowering expressions for users with a suite of Keyboard applications.
Welcome to the community of conformance!
Maximizing the Opportunity While Managing the Risks
Generative AI (GAI) provides powerful opportunities for innovation and productivity across all organizational functions – from composing emails and crafting press releases to retouching and refining images and video, all this in seconds. GAI tools can even be used to write, test and improve computer code! This comes with risks that need to be managed within your organization, in order to realize the competitive advantage these GAI tools can provide.
In this webinar, Anthony Decicco and Wael Nackasha, attorneys at GTC Law Group:
- Provide an introduction to GAI and its use to generate software code, text, and images
- Explain how machines learn, including training data and the resulting models
- Cover how developers are using GAI tools (such as GitHub Copilot and ChatGPT) to write and augment source code, with a focus on:
- A ‘demo’ of how the tools work
- The community reactions and recent litigation
- The benefits and risks of the tools
- Ways to mitigate the risks
- Best practices for policies and procedures
This webinar had a poll about areas of interest around AI and law. Click here to access it.
Check Out The Slides
About Our Speakers
Anthony Decicco
Tony is a member in GTC’s IP Strategy, Mergers & Acquisitions, and Business & Technology Transactions groups. He focuses on mergers and acquisitions, strategic development of patent portfolios, valuing and commercializing intellectual property assets, and licensing and other technology-related transactions. In addition, Tony founded and oversees the firm’s Open Source Compliance and Due Diligence practice and has extensive experience advising clients regarding the use of open source software. He has reviewed the results of literally thousands of code scans.
Tony is also the Co-Lead of GTC’s Artificial Intelligence practice and has counseled clients regarding traditional AI/ML (i.e. algorithmic/rules-based) for many years and has more recently focused on generative AI. He specializes in data set licensing and strategies for acquiring and collecting data, developing patent portfolios focused on AI inventions and applications of AI technologies, developing AI-related contract terms, risk assessment and mitigation, and related policies and guidelines, in respect of using AI to generate and test software code and the intersections between open source software and AI. Tony is the co-chair of the AI & Cloud Computing sector of the Licensing Executives Society.
Tony’s clients range from individual inventors to Fortune 100 companies. Given his extensive experience on both the buy and sell sides of mergers and acquisitions, patent purchases/sales and IP/technology licensing transactions, he is a trusted advisor to clients on all sides of the table. For acquirers, a key strength is his ability to leverage this experience to quickly identify and assess IP-related risks. On the sell side, this experience translates to grooming clients and positioning IP assets to maximize value and minimize issues during rigorous due diligence.
Prior to joining GTC, Tony was a member of the IP & Technology, Internet & E-Commerce and M&A practice groups at Skadden, Arps, Slate, Meagher & Flom. He has research and professional experience in a diverse range of fields, including patent valuation, law and economics, molecular evolution, apoptosis, and lipid biochemistry. Tony holds an Honors B.Sc. in Biochemistry from McMaster University, an M.A. in Economics and a J.D., both from the University of Toronto, where he was a law review editor. He is admitted to practice in Massachusetts, New York, Ontario, and before the United States Patent and Trademark Office (with Limited Recognition).
Wael Louis Nackasha
Wael focuses on M&A due diligence and technology-related transactional matters. Wael specializes in open source software licenses, commercial licenses, strategic and commercially-sensitive NDAs, and IP strategy advice. Wael also has deep technical knowledge in machine learning. Before joining GTC, Wael was an Associate at Ridout and Maybee LLP where he drafted and prosecuted patents for various technologies, including electrical, machine learning, blockchain, telecommunication, and computer-related technology, before both the USPTO and CIPO.
Before becoming a technology attorney, Wael was a research scientist and software programmer for several years. He published scientific papers in conferences and journals in machine learning, biometrics, computer vision, signal and image processing, and statistical signal processing. Wael holds a J.D. from Osgoode Hall Law School, and a Ph.D. in Electrical and Computer Engineering from the University of Toronto with a dissertation focused on artificial intelligence.
Check Out The Rest Of Our Webinars
This is OpenChain Webinar #56, released on 2024-09-14.
Revenera has announced the creation of an OpenChain ISO/IEC DIS 18974 conformant program for managing open source security assurance. This builds on previous adoption of OpenChain ISO/IEC 5230, the International Standard for open source license compliance, and underlines their on-going commitment to open source process management.
“Revenera’s adoption of the OpenChain international standard for open source security assurance, following our adoption of the standard for open source license compliance, demonstrates our dedication to being a leader in using safe, secure open source software. Revenera is one of only a handful of organizations that are OpenChain ISO/IEC DIS 18974 conformant; we are honored to be on the forefront and hope that other organizations will also pursue this standard to help secure their software supply chain,” said Alex Rybak, Senior Director of Product Management at Revenera. “As someone responsible for Revenera’s open source program office (OSPO), having both OpenChain certifications helps us define, administer, and continuously improve our program to conform to evolving industry best practices.”
“The OpenChain process management standards are designed to help businesses use open source more effectively and efficiently,” says Shane Coughlan, OpenChain General Manager. “Revenera has proven to be an enthusiastic participant in the OpenChain community of conformance, and also an active contributor to knowledge-sharing in our field. The future of collaborative technology like open source depends on this type of positive, sustainable engagement, and I look forward to our continued partnership as the supply chain evolves.”
Resources
Follow Revenera
About Revenera
Revenera helps product executives build better products, accelerate time to value and monetize what matters. Revenera’s leading solutions help software and technology companies drive top line revenue with modern software monetization, understand usage and compliance with software usage analytics, empower the use of open source with software composition analysis and deliver an excellent user experience—for embedded, on-premises, cloud and SaaS products. To learn more, visit www.revenera.com.
For More Information, Contact:Bret Clement
revenerapr@clementpeterson.com
