Harutyunyan N, Bauer A, Riehle D (2019)
Publication Language: English
Publication Type: Journal article, Original article
Publication year: 2019
Pages Range: 1-44
URI: https://osr.cs.fau.de/wp-content/uploads/2019/08/jss-2019-harutyunya-bauer-riehle.pdf
DOI: 10.1016/j.jss.2019.08.001
Virtually all software products incorporate free/libre and open
source software (FLOSS) components. However, ungoverned use of FLOSS
components can result in legal and financial risks, and risks to a firm's
intellectual property. To avoid these risks, companies must govern their
FLOSS use through open source governance processes and by following
industry best practices. A particular challenge is license compliance. To
manage the complexity of governance and compliance, companies should use
tools and well-defined processes. This paper investigates and presents
industry requirements for FLOSS governance tools, followed by an
evaluation of the suggested requirements by matching them with the
features of existing tools.
We chose eleven companies with an advanced understanding of open source
governance and interviewed their FLOSS governance experts to derive a
theory of industry requirements for tooling. We extended our previous
work adding the requirement category on the architecture model for
software products.
We then analyzed the features of leading governance tools and used this
analysis to evaluate two categories of our theory: FLOSS license scanning
and FLOSS components in product bills of materials. The result is a list
of FLOSS governance requirements. For practical relevance, we cast our
theory as a requirements specification for FLOSS governance tools.
APA:
Harutyunyan, N., Bauer, A., & Riehle, D. (2019). Industry Requirements for FLOSS Governance Tools to Facilitate the Use of Open Source Software in Commercial Products. Journal of Systems and Software, 1-44. https://doi.org/10.1016/j.jss.2019.08.001
MLA:
Harutyunyan, Nikolay, Andreas Bauer, and Dirk Riehle. "Industry Requirements for FLOSS Governance Tools to Facilitate the Use of Open Source Software in Commercial Products." Journal of Systems and Software (2019): 1-44.
BibTeX: Download