Whitepapers
A Breakthrough in Software Supply Chain Communications
This whitepaper explains how using a standard format, everyone in the supply chain from engineering to business managers, can now speak the same language as regards the contents of your software. Negotiations will be easier and issues can be resolved between technical and non technical decision makers, paving the way for faster time to market.
Download whitepaper 
(PDF)
A Guide to Software Encryption Export Compliance
In this whitepaper we explain why you need to identify all of the encryption functions in your software – and the challenge that poses. Then we explain the need for an automated means to identify encryption functions and to guide you through the compliance process. Finally, we describe how Black Duck’s exportIP system helps make your job easier.
Download whitepaper (PDF)
Best Practices for Managing Software Intellectual Property in an Open Source World
This whitepaper draws on the experiences of the Black Duck Software team, our customers, and other industry experts to propose new approaches to managing intellectual property in this new world. It describes a set of Best Practices that companies can use to avoid the risks and gain the benefits of this promising new approach to software development.
Download whitepaper (PDF)
Creating and Implementing An Open Source Policy: Five Steps to Success
Bernard Golden, Chief Executive Officer, Navica presents a five phase process, which provides companies a way to implement their own Open Source Policy.
Download whitepaper (PDF)
GPLv3 Summary
On Friday June 29th, the Free Software Foundation announced the release of GPL (General Public License), version 3. This much anticipated version is the sequel to the commonly used GPL v2.
This paper offers a summary of the most significant terms of the GPLv3 license.
Download paper (PDF)
Software Compliance Management: Automating License Compliance in the New, Mixed-IP Development World
This whitepaper educates companies about the challenges and benefits of working in a mixed-IP World and how software compliance systems are helping to unlock the potential of modular, collaborative development to significantly enhance profitability, reliability and ROI.
Download whitepaper (PDF)
Software Encryption Export Considerations
Ben Flowe, who leads the export/import compliance team at Berliner, Corcoran & Rowe, LLP in Washington, DC explains how to approach classification of products with encryption functions by applying the current Export Administration Regulations (EAR) provisions, from the least restrictive through the most restrictive controls.
Download whitepaper (PDF)
String Search and You May Find
This paper describes the pros and cons of string search to determine code origins, and issues with interpreting string search results. The paper then describes how code analysis based on fuzzy matching against a comprehensive code database leads to a superior outcome.
Download whitepaper (PDF)
The New Due Diligence Assessing and Protecting Your Software Asset Value in Mergers, Acquisitions and Financing Rounds
The goal of this whitepaper is to make all parties involved in technology Merger & Acquisition (M&A) or funding events aware of software compliance management solutions, and how they can help organizations achieve their business goals.
Download whitepaper (PDF)
The Quest for an "Open Source Genome"
This paper describes how the “open source genome” concept can be useful in understanding the origin and history of your code. We explore the nature of open source, why and how software developers use it, how information from an open source genome can help identify open source in your code and establish its origins, and why that is important.
Download whitepaper (PDF)
Black Duck Software Whitepapers 
