It's All About The License

It's All About The License

InformationWeek Staff, Contributor

December 18, 2009

2 Min Read

As director of intellectual property strategy for the Linux Foundation and an attorney at Choate Hall & Stewart, Karen Copenhaver knows a bit about open source software licensing. She recently spoke with Dr. Dobb's editor in chief Jonathan Erickson.

Dr. Dobb's: Are open source and public domain the same thing?

Copenhaver: Not at all. Open source licenses are granted by the copyright holder and the license is an exercise of the copyright. In order to enjoy the benefits of the license, you must comply with its terms. If you don't comply with the license, you're not licensed--and another word for unlicensed use is "infringement."

Dr. Dobb's: There are usually no signed license agreements with open source software. How, then, can users be subject to licenses?

Copenhaver: Confusion is often caused by the fact that the software is made generally available for download. Users may assume that if something is made available for free, it's thus licensed for use without restriction. That's not the case. A license may be implied where one isn't stated, but an implied license can't contradict an actual stated limited license. The fact that there is no charge for the software is irrelevant.

Dr. Dobb's: What are the main legal issues regarding open source?

Copenhaver: The main issue for businesses is internal control. Businesses have procurement organizations that are responsible for procuring everything the business uses in its operations. Those organizations review agreements and establish terms before they write the check. The internal control is based on the assumption that the business will pay for everything it uses. In order to arrange for payment, you have to go through procurement.

Because open source is made available without charge, this basic internal control fails. The software often comes into the organization without review of the associated obligations or any process to ensure compliance. Companies are in the process of implementing policies and processes that impose basic internal controls over acquisition, use, and compliance of open source software.

Read more about:

20092009

About the Author(s)

InformationWeek Staff

InformationWeek Staff

Contributor

See more from InformationWeek Staff
Never Miss a Beat: Get a snapshot of the issues affecting the IT industry straight to your inbox.
SIGN-UP

You May Also Like

More Insights
Webinars
More Webinars
Reports
More Reports

Editor's Choice

Bald eagles, eagle in flight.
Cyber Resilience
9 Ways CISOs Can Stay Ahead of Bad Actors9 Ways CISOs Can Stay Ahead of Bad Actors
byLisa Morgan
Jul 24, 2024
9 Slides
Binary code concept pattern and big data structure.Net and source code.Abstract background of technology, science and cloud computer.
Data Management
How Much Data Is Too Much for Organizations to Derive Value?How Much Data Is Too Much for Organizations to Derive Value?
byCarrie Pallardy
Jul 22, 2024
11 Min Read
CrowdStrike Holdings, Inc. logo is displayed on a smartphone screen.
Cyber Resilience
CrowdStrike Aftermath: Lessons Learned for Future RecoveryCrowdStrike Aftermath: Lessons Learned for Future Recovery
byJoao-Pierre S. Ruth
Jul 24, 2024
6 Min Read
Calculator displaying the text "SALARY" on top of $100 bills.
IT Leadership
2024 InformationWeek US IT Salary Report: Profits, Layoffs, and the Continued Rise of AI2024 InformationWeek US IT Salary Report
byInformationWeek Staff
Jun 4, 2024
1 Min Read
Digital Security and Threat of a System
IT Leadership
11 Ways Cybersecurity Threats are Evolving11 Ways Cybersecurity Threats are Evolving
byLisa Morgan
Jun 13, 2024
11 Slides
Webinars
More Webinars
White Papers
More White Papers
Live Events
More Live Events
Reports
More Reports