Understanding Industry Requirements for FLOSS Governance Tools

Harutyunyan N, Bauer A, Riehle D (2018)

Publication Language: English

Publication Type: Conference contribution, Original article

Publication year: 2018

Publisher: Springer

Conference Proceedings Title: IFIP Advances in Information and Communication Technology (IFIP AICT)

Event location: Athens GR

ISBN: 978-3-319-92375-8

URI: https://osr.cs.fau.de/wp-content/uploads/2018/05/oss-2018-harutyunyan-bauer-riehle.pdf

DOI: 10.1007/978-3-319-92375-8_13

Abstract

Almost all software products today incorporate free/libre, and open source software (FLOSS) components. Companies must govern their FLOSS use to avoid potential risks to their intellectual property resulting from the use of FLOSS components. A particular challenge is license compliance. To manage the complexity of license compliance, companies should use tools and well-defined processes to perform these tasks time and cost efficiently. This paper investigates and presents common industry requirements for FLOSS governance tools, followed by an evaluation of the suggested requirements by matching them with the features of existing tools. We chose 10 industry-leading companies through polar theoretical sampling and interviewed their FLOSS governance experts to derive a theory of industry needs and requirements for tooling. We then analyzed the features of a governance tools sample and used this analysis to evaluate two categories of our theory: FLOSS license scanning and FLOSS in product bills of materials. The result is a list of FLOSS governance requirements based on our qualitative study of the industry, evaluated using the existing governance tool features. For higher practical relevance, we cast our theory as a requirements specification for FLOSS governance tools.

Authors with CRIS profile

Nikolay Harutyunyan Professur für Open Source Software Andreas Bauer Professur für Open Source Software Dirk Riehle Professur für Open Source Software

How to cite

APA:

Harutyunyan, N., Bauer, A., & Riehle, D. (2018). Understanding Industry Requirements for FLOSS Governance Tools. In Stamelos I., Gonzalez-Barahoña J., Varlamis I., Anagnostopoulos D. (Eds.), IFIP Advances in Information and Communication Technology (IFIP AICT). Athens, GR: Springer.

MLA:

Harutyunyan, Nikolay, Andreas Bauer, and Dirk Riehle. "Understanding Industry Requirements for FLOSS Governance Tools." Proceedings of the 14th International Conference on Open Source Systems, OSS ’18, Athens Ed. Stamelos I., Gonzalez-Barahoña J., Varlamis I., Anagnostopoulos D., Springer, 2018.

BibTeX: Download