Open Compliance Summit has ended
December 6 -7 - Yokohama, Japan
Click for Open Compliance Summit Information & Registration

Sign up or log in to bookmark your favorites and sync them to your phone or calendar.

Any [clear filter]
Thursday, December 6

14:40 JST

Best Practices For Accepting Code Contributions - Dashiell Renaud, Google
This talk will present best practices for corporations receiving code contributions from third parties. These best practices consist of three components: employing an Apache-type Contributor License Agreement (CLA), implementing a procedure for accepting CLA signatures, and implementing a procedure for accepting code submitted under the agreement.

I will discuss the specific laws and risks attendant to each part of the CLA signing and code acceptance process.

avatar for Dashiell Renaud

Dashiell Renaud

Program Manager, Google
Dashiell Renaud is a member of Google's Open Source Programs Office responsible for setting open source policies across Alphabet and overseeing open source compliance for Alphabet's products and services.Dashiell received a Juris Doctor from Vanderbilt University Law School in 2013... Read More →

Thursday December 6, 2018 14:40 - 15:00 JST
Conference Room 7&8
  Conference Session
  • Experience Level Any

16:20 JST

FOSSology - Two New Approached for License Scanning - Maximilian Huber, TNG Technology Consulting GmbH & Aman Jain, Mercari
Most license scanners are rule-based: Defined occurrences of text patterns let software identify a particular licensing in open source software. This approach is straight forward and easy to understand.

But there are two major drawbacks: first a license expert is required to define such rules. Secondly, since many licenses share common text portions imprecise license classifications occur.

In the FOSSology project, recently two new approaches
have been implemented: One approach is called Atarashi and uses information retrieval statistics about license texts and attempts to identify licensing statements based on computed statistics. The other approach named Rigel uses machine learning to understand licensing in source code, based on previously made clearing decisions.

This presentation covers the challenges of license recognition and explains how different approaches cover them.

avatar for Maximilian Huber

Maximilian Huber

Senior Consultant, TNG Technology Consulting GmbH
He is part of the Linux Foundation project FOSSology, as a committer and in the the Steering Committee. Further he is also involved in SW360, which is currently an Eclipse incubator project. He previously gave FOSSology related talks on the Linux Foundation Collaboration Summit 2016... Read More →
avatar for Aman Jain

Aman Jain

Search Engineer, Mercari
I am currently a Software Engineer at Mercari, Japan. I graduated from Indian Institute of Technology, Roorkee as a Mechanical Engineer. Successfully completed Google Summer of Code project with Fossology. Winner of GEDigital hacakthon, winner of Shopclues hackathon and my interests... Read More →

Thursday December 6, 2018 16:20 - 16:40 JST
Conference Room 7&8
  Conference Session
  • Experience Level Any
Friday, December 7

09:20 JST

Automated OSS and License Detection System at Hitachi - Daisuke Koide, Hitachi, Ltd
Hitachi develops and provides enterprise systems with a large amount of Open Source Software, and the number of OSS used at Hitachi is increasing year by year. It is getting hard that developers recognize the whole stacks of OSS they use, because today’s OSS requires numerous other OSS under the hood and those dependencies are downloaded automatically on demand by tools like package managers. That makes it difficult to perform comprehensive license clearance promptly.
Daisuke established a system to solve this problem. The system is a kind of proxy server, which saves all files flowing through this proxy and detect what OSS and licenses each file includes. It enables developers to know what OSS they actually obtain and what licenses are included as they download. In this talk, Daisuke will present how the system works, how its improvement is, and future work.


Daisuke Koide

Software Engineer, Hitachi, Ltd
Daisuke Koide is a software engineer at Hitachi, Ltd. He joined a team developing software component management database, which is aimed at accelerating compliance tasks at Hitachi. He is also a main developer of the automated OSS and license detection system.

Friday December 7, 2018 09:20 - 09:40 JST
Conference Room 7&8
  Conference Session
  • Experience Level Any
Filter sessions
Apply filters to sessions.