Create an Open Source Policy
Open source has permeated software platforms and applications, regardless of whether they are built in-house or acquired from commercial software vendors. According to IDC, “Open source makes up 30% or more of the code at major Global 2000 organizations.” Yet, surprisingly, the use of OSS is often uncontrolled. In fact, Gartner predicts that “by 2014, 50% of Global 2000 organizations will experience technology, cost and security challenges through a lack of open source governance.”
Given the vital role that software plays in products, services and applications, an open source policy should be an integral part of your organization’s overall OSS program, providing the framework for your governance program and compliance efforts.
An open source policy forms the basis for employee education regarding the management of OSS and establishes the broader organization’s OSS culture. And while many open source policies are based solely on the legal aspects of license compliance, the best policies are those that address the operational aspects as well. Your policy should include guidelines regarding:
- Internal usage
- Release and redistribution
- Licenses compliance
- Open source request, evaluation and approval
- Support and maintenance
- Community participation
Black Duck Solutions
Black Duck provides software and consulting to deliver end-to-end solutions for open source adoption, management, governance and compliance while connecting development teams to critically important community resources. An Open Source Management Assessment (OSMA) identifies and analyzes gaps in your organization's policy, process and tools, and provides recommendations for improvement.
Black Duck Consulting utilizes its unparalleled industry expertise to help you create and implement a customized open source policy that combines industry best practices with a focus on fitting the pace and needs of your specific organization.