Black Duck Hub
14-Day Trial

Open Source Policy

Create an Open Source Policy

Open source has permeated software platforms and applications, regardless of whether they are built in-house or acquired from commercial software vendors. According to IDC, “Open source makes up 30% or more of the code at major Global 2000 organizations.” Yet, surprisingly, the use of OSS is often uncontrolled. In fact, Gartner predicts that “by 2014, 50% of Global 2000 organizations will experience technology, cost and security challenges through a lack of open source governance.” 

Given the vital role that software plays in products, services and applications, an open source policy should be an integral part of your organization’s overall OSS program, providing the framework for your governance program and compliance efforts. 

An open source policy forms the basis for employee education regarding the management of OSS and establishes the broader organization’s OSS culture. And while many open source policies are based solely on the legal aspects of license compliance, the best policies are those that address the operational aspects as well. Your policy should include guidelines regarding:

  • Internal usage
  • Release and redistribution
  • Licenses compliance
  • Open source request, evaluation and approval
  • Support and maintenance
  • Community participation

Black Duck Solutions

Black Duck provides OSS Logistics solutions for open source adoption, management, governance and compliance, while connecting development teams to critically important community resources. An Open Source Management Assessment (OSMA) identifies and analyzes gaps in your organization's policy, process and tools, and provides recommendations for improvement. 

Black Duck Consulting utilizes its unparalleled industry expertise to help you create and implement a customized open source policy that combines industry best practices with a focus on fitting the pace and needs of your specific organization.

Latest Tweets

Black Duck Software (11 hours ago)
Sophisticated approaches to stealing money from financial institutions: New Banking, ATM Attack Campaigns https://t.co/jiM3HrNa1N #security
Black Duck Software (14 hours ago)
Avast patches its web browser after Google finds flaw in Chromium-inspired product via @SCMagazine https://t.co/rj678NLiPx #patch #flaw
Black Duck Software (16 hours ago)
Take note: 'Huge' #Vulnerabilities In Apps Like uTorrent Expose #Mac #Security Flaws In El Capitan, Yosemite https://t.co/G3UfryrSFm #Apple
Black Duck Software (17 hours ago)
Docker Engine 1.10 Puts Emphasis On Container Security via @InformationWeek https://t.co/m8yYc42kL0 #container #security
Black Duck Software (18 hours ago)
Do you check #security? Gmail Now Warns Users When They Send & Receive Email Over Unsecured Connections @TechCrunch https://t.co/qw5tgSaUtb

Black Duck Software
800 District Ave.
Burlington, MA 01803

Contact Us

Legal Notices | Privacy Policy | Site map
Open Source Delivers | Open HUB