Once again another interesting and informative day at the ELN Workshop in Amsterdam.
The topics of discussion in the final day were compliance, risk, patents and industry development. Different organizations made presentations in the morning regarding licensing compliance and how it pertains to the internal part of the organization, as well as, through to distribution. Intra-organization compliance systems were discussed in short and the various mediums that could be used in order to insure that the vendor(s) is complaint. Most all were in agreement that it was vital for an organization to integrate a compliance policy into the supply chain. Different measures on how this compliance policy could be constructed were discussed also.
The second topic discussed was Risk and how to evaluate and contain it. A balanced discussion on risk from both the legal and business sides of things gave a realistic case view on what open source companies are facing in the current and expanding market. Members of the ELN have also created and are developing a Risk Grid to address procurement of F/OSS and it's function within the supply chain. This grid aims to assist professionals in the field to regulate their actions with their suppliers and buyers by allocating risk to the appropriate actor within the supply chain.
A patent panel also discussed briefly about the pro's and con's of patents within the organization and argued how these patents can hinder, as well as, support innovation within an organization. The affects of patents on licensing and the various complications that arise were also discussed, but agreed that another workshop will be set aside to discuss patents in more detail.
Finally, Future developments were discussed and their impacts on the F/OSS industry. Technological innovations and shifts were discussed and weighed against the developments of the F/OSS movement in the past. We are seeing quite a shift from software as a product to more of a service driven industry with such developments as the cloud and embedded MID's. Awareness must be made now that assists professionals in evaluating legal risk in accordance to licensing and procurement, through educating professionals on the importance of compliance and how to properly implement a compliance policy within their respective organizations. Moreover, it is generally agreed that there must be more interaction with developers/engineers and management/legal counsel to work together and build a "best case" practice that incorporates the developer/engineers issues and needs together with the organizations compliance. The most sound method of accomplishing this is through working together to reach our common goal with special emphasis on proper education and documentation.
I would like to thank the Free Software Foundation Europe and everyone who attended the ELN workshop and especially thank them for allowing me to participate in this closed discussion. It definitely opened my eyes to topics in which I have only scratched the surface on. The complexities of the topics discussed were just another confirmation that we need to work even harder together to meet the ever growing issues faced by all levels of the F/OSS movement. I look forward to working together with you at the ELN and sharing the knowledge and contributions from the unique position I hold between industry and community.