SlideShare uma empresa Scribd logo

Implications of Open Source Software Use (or Let's Talk Open Source)

Gail Murphy
Gail Murphy

A talk given to the UBC Computer Science Alumni group discussing a number of implications of the use of open source as part of the global software supply chain.

Software
1 de 35
Baixar para ler offline
Let’s Talk
 Open Source or… Implications of Open Source Software Use Gail C. Murphy
 University of British Columbia Tasktop Technologies @gail_murphy A restrictive license has been chosen given unpublished work, and descriptions of others work
2 Who Are You? Let’s Talk Open Source 
 Code multiple days a week Ü Mostly Organize Coding Ü Something Else Ü
3Let’s Talk Open Source Here’s My Plan Integral and Critical ! Managing Use á Implications „
4 The Take-Aways Let’s Talk Open Source Open source: does not mean free Open source:
 use requires
 knowledge Open source: the fabric on which software development occurs
START Keynote Presentation Template Welcome to the best experience ı have in this presentation Where a variety of sections, easy and to understand is demonstrated  ! Integral and Critical
6 Supply of Open Source Components Let’s Talk Open Source:
 Integral and Critical suppliers total 
 components >105K >834K (Java) central repository GitHub project dependences 2015 State of the Software: Supply Chain Report (Sonatype)
7 Why Use Open Source Components? Let’s Talk Open Source:
 Integral and Critical build products (and other components) faster
 
 higher-quality components
 
 lower cost to (re)use
 
 ongoing updates
8 Use of Open Source Components Let’s Talk Open Source:
 Integral and Critical 17.2 Billion 
 Requests Served Java components in 2014 to >106K organizations 2015 State of the Software: Supply Chain Report (Sonatype)
9 What Happens When Open Source Components Fail? Let’s Talk Open Source:
 Integral and Critical https://xkcd.com/1354/
10 What Happens When Open Source Components Fail? Let’s Talk Open Source:
 Integral and Critical https://xkcd.com/1354/
11 What Happens When Open Source Components Fail? Let’s Talk Open Source:
 Integral and Critical https://xkcd.com/1354/
12 What Happens When Open Source Components Fail? Let’s Talk Open Source:
 Integral and Critical Economist, Apr 12, 2014
13 Even When Better Versions of Components Exist… Let’s Talk Open Source:
 Integral and Critical CVE-2007-6721
 CVSS 10
 Exploitability 10 since identification… 11,236 organizations have downloaded the vulnerable component 214,484 times 2015 State of the Software: Supply Chain Report (Sonatype)
14 Even When Better Versions of Components Exist… Let’s Talk Open Source:
 Integral and Critical 2015 State of the Software: Supply Chain Report (Sonatype) of 240,757 component downloads by large financial or technology firms in 2014… were of known defective part and or those with a defective part, the defects were older than 2013 7.5% 66%
15 Availability Matters Too Let’s Talk Open Source:
 Integral and Critical
16 The Take-Aways: Integral and Critical Let’s Talk Open Source:
 Managing Use Open source: the fabric on which software development occurs
START Keynote Presentation Template Welcome to the best experience ı have in this presentation Where a variety of sections, easy and to understand is demonstrated   Managing Use á
18 Murphy, Personnel Correspondence, 2016 Interviews with Engineering Leaders SME 4 1 2
19 Interviews with Engineering Leaders Let’s Talk Open Source:
 Managing Use Open before Closed Investigate open source - who else is using? - how many contributors? - support model? - security profile? Know they might need to fork Some place committers on project Murphy, Personnel Correspondence, 2016
20 Need for Controls Let’s Talk Open Source:
 Managing Use
21 The Take-Aways: Managing Use Let’s Talk Open Source Open source: does not mean free
START Keynote Presentation Template Welcome to the best experience ı have in this presentation Where a variety of sections, easy and to understand is demonstrated   Implications „
START Keynote Presentation Template Welcome to the best experience ı have in this presentation Where a variety of sections, easy and to understand is demonstrated   Analysis of 1000s of GitHub Projects
24 What Kind of Component You Are Depending On? Let’s Talk Open Source:
 Implications Guava Vault Junit 0% 25% 50% 75% 100% 4 32 256 2048 Number of user projects Rs:Ratioofuserprojectshavingsocialinteractions Palyart, Murphy, Masrani 2016, in progress
25 Set Your Expectations Let’s Talk Open Source:
 Implications 0 500 1000 1500 4 32 256 2048 Number of user projects Medianinvolvementtime Palyart, Murphy, Masrani 2016, in progress
26 Set Your Expectations Let’s Talk Open Source:
 Implications Technical dependence before social interaction Social interaction before technical dependence Palyart, Murphy, Masrani 2016, in progress
27 Set Your Expectations Let’s Talk Open Source:
 Implications 1 10 100 1000 10000 Social before technical Technical before social Numberofcontributions Palyart, Murphy, Masrani 2016, in progress
START Keynote Presentation Template Welcome to the best experience ı have in this presentation Where a variety of sections, easy and to understand is demonstrated   Survey about Software Licenses
29 Know the Impact of Choosing an Open Source Component Let’s Talk Open Source:
 Implications John has been working on ToDoApp, his own personal task management
 application. ToDoApp is going to be a desktop-based application that will
 be used exclusively by John on his own computer. To make sure he does not
 lose any of his very special tasks, John is planning to use a lightweight
 library called LightDB to persist ToDoApp’s data.
 
 If LightDB is distributed under the following licenses, would John be
 allowed to use it as part of ToDoApp?
 
 GNU GPL 3.0
 GNU LGPL 3.0
 MPL 2.0 UnsureNoYes UnsureNoYes UnsureNoYes Almedia, Murphy, Wilson, Hoye, 2016, under submission
30 Know the Impact of Choosing an Open Source Component Let’s Talk Open Source:
 Implications If LightDB is distributed under the following licenses, would John be
 allowed to use it as part of ToDoApp?
 
 GNU GPL 3.0
 GNU LGPL 3.0
 MPL 2.0 Yes Yes Yes 375
 respondents Almedia, Murphy, Wilson, Hoye, 2016, under submission
31 Know the Impact of Choosing an Open Source Component Let’s Talk Open Source:
 Implications As the lead developer of a new product at GreatSoftware Inc., Laura decided to
 use an existing authentication library she found on the web called SafeAuth.
 She realizes that SafeAuth could be improved using a stronger cryptographic
 algorithm when storing users’ information. The product is going to be released
 under a commercial software license, but Laura would like to release the
 improved version of SafeAuth as open source.
 
 If SafeAuth is distributed under MPL, would Laura and her team be allowed to release the improved version of SafeAuth as open source.
 
 GNU GPL 3.0
 GNU LGPL 3.0
 MPL 2.0 UnsureNoYes UnsureNoYes UnsureNoYes Almedia, Murphy, Wilson, Hoye, 2016, under submission
32 Know the Impact of Choosing an Open Source Component Let’s Talk Open Source:
 Implications If SafeAuth is distributed under MPL, would Laura and her team be allowed to release the improved version of SafeAuth as open source.
 
 GNU GPL 3.0
 GNU LGPL 3.0
 MPL 2.0 No No Yes 375
 respondents Almedia, Murphy, Wilson, Hoye, 2016, under submission
33 The Take-Aways: Implications Let’s Talk Open Source Open source:
 use requires
 knowledge
Illustration copyright Nenov Brothers Images /Shutterstock
35 The Take-Aways Let’s Talk Open Source Open source: does not mean free Open source:
 use requires
 knowledge Open source: the fabric on which software development occurs @gail_murphy

Recomendados

The (Un) Expected Impact of Tools in Software Evolution
The (Un) Expected Impact of Tools in Software EvolutionThe (Un) Expected Impact of Tools in Software Evolution
The (Un) Expected Impact of Tools in Software EvolutionGail Murphy
 
Icsme 2021-keynote-creating-usable-and-useful-software-tools
Icsme 2021-keynote-creating-usable-and-useful-software-toolsIcsme 2021-keynote-creating-usable-and-useful-software-tools
Icsme 2021-keynote-creating-usable-and-useful-software-toolsGail Murphy
 
Developing Effective Software Productively
Developing Effective Software ProductivelyDeveloping Effective Software Productively
Developing Effective Software ProductivelyGail Murphy
 
Beyond DevOps: Finding Value through Requirements
Beyond DevOps: Finding Value through RequirementsBeyond DevOps: Finding Value through Requirements
Beyond DevOps: Finding Value through RequirementsGail Murphy
 
A Study of the Quality-Impacting Practices of Modern Code Review at Sony Mobile
A Study of the Quality-Impacting Practices of Modern Code Review at Sony MobileA Study of the Quality-Impacting Practices of Modern Code Review at Sony Mobile
A Study of the Quality-Impacting Practices of Modern Code Review at Sony MobileSAIL_QU
 
Open Engineering Framework
Open Engineering FrameworkOpen Engineering Framework
Open Engineering FrameworkJohn Vogel
 
Opinion Mining for Software Engineering
Opinion Mining for Software EngineeringOpinion Mining for Software Engineering
Opinion Mining for Software EngineeringAlexander Serebrenik
 
Defect Prediction: Accomplishments and Future Challenges
Defect Prediction: Accomplishments and Future ChallengesDefect Prediction: Accomplishments and Future Challenges
Defect Prediction: Accomplishments and Future ChallengesYasutaka Kamei
 

Recomendados

The (Un) Expected Impact of Tools in Software Evolution
The (Un) Expected Impact of Tools in Software EvolutionThe (Un) Expected Impact of Tools in Software Evolution
The (Un) Expected Impact of Tools in Software EvolutionGail Murphy
 
Icsme 2021-keynote-creating-usable-and-useful-software-tools
Icsme 2021-keynote-creating-usable-and-useful-software-toolsIcsme 2021-keynote-creating-usable-and-useful-software-tools
Icsme 2021-keynote-creating-usable-and-useful-software-toolsGail Murphy
 
Developing Effective Software Productively
Developing Effective Software ProductivelyDeveloping Effective Software Productively
Developing Effective Software ProductivelyGail Murphy
 
Beyond DevOps: Finding Value through Requirements
Beyond DevOps: Finding Value through RequirementsBeyond DevOps: Finding Value through Requirements
Beyond DevOps: Finding Value through RequirementsGail Murphy
 
A Study of the Quality-Impacting Practices of Modern Code Review at Sony Mobile
A Study of the Quality-Impacting Practices of Modern Code Review at Sony MobileA Study of the Quality-Impacting Practices of Modern Code Review at Sony Mobile
A Study of the Quality-Impacting Practices of Modern Code Review at Sony MobileSAIL_QU
 
Open Engineering Framework
Open Engineering FrameworkOpen Engineering Framework
Open Engineering FrameworkJohn Vogel
 
Opinion Mining for Software Engineering
Opinion Mining for Software EngineeringOpinion Mining for Software Engineering
Opinion Mining for Software EngineeringAlexander Serebrenik
 
Defect Prediction: Accomplishments and Future Challenges
Defect Prediction: Accomplishments and Future ChallengesDefect Prediction: Accomplishments and Future Challenges
Defect Prediction: Accomplishments and Future ChallengesYasutaka Kamei
 
Put Your Hands in the Mud: What Technique, Why, and How
Put Your Hands in the Mud: What Technique, Why, and HowPut Your Hands in the Mud: What Technique, Why, and How
Put Your Hands in the Mud: What Technique, Why, and HowMassimiliano Di Penta
 
Early Detection of Collaboration Conflicts & Risks in Software Development
Early Detection of Collaboration Conflicts & Risks in Software DevelopmentEarly Detection of Collaboration Conflicts & Risks in Software Development
Early Detection of Collaboration Conflicts & Risks in Software DevelopmentRoopesh Jhurani
 
Exploring the Use of Labels to Categorize Issues in Open-Source Software Pro...
Exploring the Use of Labels to Categorize Issues in Open-Source Software Pro...Exploring the Use of Labels to Categorize Issues in Open-Source Software Pro...
Exploring the Use of Labels to Categorize Issues in Open-Source Software Pro...Javier Canovas
 
Enabling the Definition and Enforcement of Governance Rules in Open Source Sy...
Enabling the Definition and Enforcement of Governance Rules in Open Source Sy...Enabling the Definition and Enforcement of Governance Rules in Open Source Sy...
Enabling the Definition and Enforcement of Governance Rules in Open Source Sy...Javier Canovas
 
SETTA'18 Keynote: Intelligent Software Engineering: Synergy between AI and So...
SETTA'18 Keynote: Intelligent Software Engineering: Synergy between AI and So...SETTA'18 Keynote: Intelligent Software Engineering: Synergy between AI and So...
SETTA'18 Keynote: Intelligent Software Engineering: Synergy between AI and So...Tao Xie
 
Supporting Newcomers in Software Development Projects
Supporting Newcomers in Software Development ProjectsSupporting Newcomers in Software Development Projects
Supporting Newcomers in Software Development ProjectsSebastiano Panichella
 
Test-Driven Development in the Corporate Workplace
Test-Driven Development in the Corporate WorkplaceTest-Driven Development in the Corporate Workplace
Test-Driven Development in the Corporate WorkplaceAhmed Owian
 
Cser13.ppt
Cser13.pptCser13.ppt
Cser13.pptPtidej Team
 
Wait for it: identifying “On-Hold” self-admitted technical debt
Wait for it: identifying “On-Hold” self-admitted technical debtWait for it: identifying “On-Hold” self-admitted technical debt
Wait for it: identifying “On-Hold” self-admitted technical debtRungrojMaipradit1
 
Agile maintenance
Agile maintenanceAgile maintenance
Agile maintenancearalikatte
 
Modeling and Analyzing Openness Trade-Offs in Software Platforms: A Goal-Orie...
Modeling and Analyzing Openness Trade-Offs in Software Platforms: A Goal-Orie...Modeling and Analyzing Openness Trade-Offs in Software Platforms: A Goal-Orie...
Modeling and Analyzing Openness Trade-Offs in Software Platforms: A Goal-Orie...Mahsa H. Sadi
 
Advantages and Disadvantages of a Monolithic Repository
Advantages and Disadvantages of a Monolithic RepositoryAdvantages and Disadvantages of a Monolithic Repository
Advantages and Disadvantages of a Monolithic Repositorymustafa sarac
 
tem7
tem7tem7
tem7guest69032c
 
Open Source Software Survivability Analysis Using Communication Pattern Valid...
Open Source Software Survivability Analysis Using Communication Pattern Valid...Open Source Software Survivability Analysis Using Communication Pattern Valid...
Open Source Software Survivability Analysis Using Communication Pattern Valid...IOSR Journals
 
Epics qt application peer reviews
Epics qt application peer reviewsEpics qt application peer reviews
Epics qt application peer reviewsRobert-Emmanuel Mayssat
 
Wcre13b.ppt
Wcre13b.pptWcre13b.ppt
Wcre13b.pptPtidej Team
 
Software bug prediction
Software bug prediction Software bug prediction
Software bug prediction Muthukumaran Kasinathan
 
A Mono- and Multi-objective Approach for Recommending Software Refactoring
A Mono- and Multi-objective Approach for Recommending Software RefactoringA Mono- and Multi-objective Approach for Recommending Software Refactoring
A Mono- and Multi-objective Approach for Recommending Software RefactoringAli Ouni
 
Leveraging HPC Resources to Improve the Experimental Design of Software Analy...
Leveraging HPC Resources to Improve the Experimental Design of Software Analy...Leveraging HPC Resources to Improve the Experimental Design of Software Analy...
Leveraging HPC Resources to Improve the Experimental Design of Software Analy...Chakkrit (Kla) Tantithamthavorn
 
Eclipse community survey 2014 v2
Eclipse community survey 2014 v2Eclipse community survey 2014 v2
Eclipse community survey 2014 v2Ian Skerrett
 
Open Source vs Proprietary
Open Source vs ProprietaryOpen Source vs Proprietary
Open Source vs ProprietaryM. Antoinette Jerom
 
Open Source Lecture
Open Source LectureOpen Source Lecture
Open Source LectureiTawy Community
 

Mais conteúdo relacionado

Mais procurados

Put Your Hands in the Mud: What Technique, Why, and How
Put Your Hands in the Mud: What Technique, Why, and HowPut Your Hands in the Mud: What Technique, Why, and How
Put Your Hands in the Mud: What Technique, Why, and HowMassimiliano Di Penta
 
Early Detection of Collaboration Conflicts & Risks in Software Development
Early Detection of Collaboration Conflicts & Risks in Software DevelopmentEarly Detection of Collaboration Conflicts & Risks in Software Development
Early Detection of Collaboration Conflicts & Risks in Software DevelopmentRoopesh Jhurani
 
Exploring the Use of Labels to Categorize Issues in Open-Source Software Pro...
Exploring the Use of Labels to Categorize Issues in Open-Source Software Pro...Exploring the Use of Labels to Categorize Issues in Open-Source Software Pro...
Exploring the Use of Labels to Categorize Issues in Open-Source Software Pro...Javier Canovas
 
Enabling the Definition and Enforcement of Governance Rules in Open Source Sy...
Enabling the Definition and Enforcement of Governance Rules in Open Source Sy...Enabling the Definition and Enforcement of Governance Rules in Open Source Sy...
Enabling the Definition and Enforcement of Governance Rules in Open Source Sy...Javier Canovas
 
SETTA'18 Keynote: Intelligent Software Engineering: Synergy between AI and So...
SETTA'18 Keynote: Intelligent Software Engineering: Synergy between AI and So...SETTA'18 Keynote: Intelligent Software Engineering: Synergy between AI and So...
SETTA'18 Keynote: Intelligent Software Engineering: Synergy between AI and So...Tao Xie
 
Supporting Newcomers in Software Development Projects
Supporting Newcomers in Software Development ProjectsSupporting Newcomers in Software Development Projects
Supporting Newcomers in Software Development ProjectsSebastiano Panichella
 
Test-Driven Development in the Corporate Workplace
Test-Driven Development in the Corporate WorkplaceTest-Driven Development in the Corporate Workplace
Test-Driven Development in the Corporate WorkplaceAhmed Owian
 
Wait for it: identifying “On-Hold” self-admitted technical debt
Wait for it: identifying “On-Hold” self-admitted technical debtWait for it: identifying “On-Hold” self-admitted technical debt
Wait for it: identifying “On-Hold” self-admitted technical debtRungrojMaipradit1
 
Agile maintenance
Agile maintenanceAgile maintenance
Agile maintenancearalikatte
 
Modeling and Analyzing Openness Trade-Offs in Software Platforms: A Goal-Orie...
Modeling and Analyzing Openness Trade-Offs in Software Platforms: A Goal-Orie...Modeling and Analyzing Openness Trade-Offs in Software Platforms: A Goal-Orie...
Modeling and Analyzing Openness Trade-Offs in Software Platforms: A Goal-Orie...Mahsa H. Sadi
 
Advantages and Disadvantages of a Monolithic Repository
Advantages and Disadvantages of a Monolithic RepositoryAdvantages and Disadvantages of a Monolithic Repository
Advantages and Disadvantages of a Monolithic Repositorymustafa sarac
 
Open Source Software Survivability Analysis Using Communication Pattern Valid...
Open Source Software Survivability Analysis Using Communication Pattern Valid...Open Source Software Survivability Analysis Using Communication Pattern Valid...
Open Source Software Survivability Analysis Using Communication Pattern Valid...IOSR Journals
 
A Mono- and Multi-objective Approach for Recommending Software Refactoring
A Mono- and Multi-objective Approach for Recommending Software RefactoringA Mono- and Multi-objective Approach for Recommending Software Refactoring
A Mono- and Multi-objective Approach for Recommending Software RefactoringAli Ouni
 
Leveraging HPC Resources to Improve the Experimental Design of Software Analy...
Leveraging HPC Resources to Improve the Experimental Design of Software Analy...Leveraging HPC Resources to Improve the Experimental Design of Software Analy...
Leveraging HPC Resources to Improve the Experimental Design of Software Analy...Chakkrit (Kla) Tantithamthavorn
 
Eclipse community survey 2014 v2
Eclipse community survey 2014 v2Eclipse community survey 2014 v2
Eclipse community survey 2014 v2Ian Skerrett
 

Mais procurados (20)

Put Your Hands in the Mud: What Technique, Why, and How
Put Your Hands in the Mud: What Technique, Why, and HowPut Your Hands in the Mud: What Technique, Why, and How
Put Your Hands in the Mud: What Technique, Why, and How
 
Early Detection of Collaboration Conflicts & Risks in Software Development
Early Detection of Collaboration Conflicts & Risks in Software DevelopmentEarly Detection of Collaboration Conflicts & Risks in Software Development
Early Detection of Collaboration Conflicts & Risks in Software Development
 
Exploring the Use of Labels to Categorize Issues in Open-Source Software Pro...
Exploring the Use of Labels to Categorize Issues in Open-Source Software Pro...Exploring the Use of Labels to Categorize Issues in Open-Source Software Pro...
Exploring the Use of Labels to Categorize Issues in Open-Source Software Pro...
 
Enabling the Definition and Enforcement of Governance Rules in Open Source Sy...
Enabling the Definition and Enforcement of Governance Rules in Open Source Sy...Enabling the Definition and Enforcement of Governance Rules in Open Source Sy...
Enabling the Definition and Enforcement of Governance Rules in Open Source Sy...
 
SETTA'18 Keynote: Intelligent Software Engineering: Synergy between AI and So...
SETTA'18 Keynote: Intelligent Software Engineering: Synergy between AI and So...SETTA'18 Keynote: Intelligent Software Engineering: Synergy between AI and So...
SETTA'18 Keynote: Intelligent Software Engineering: Synergy between AI and So...
 
Supporting Newcomers in Software Development Projects
Supporting Newcomers in Software Development ProjectsSupporting Newcomers in Software Development Projects
Supporting Newcomers in Software Development Projects
 
Test-Driven Development in the Corporate Workplace
Test-Driven Development in the Corporate WorkplaceTest-Driven Development in the Corporate Workplace
Test-Driven Development in the Corporate Workplace
 
Cser13.ppt
Cser13.pptCser13.ppt
Cser13.ppt
 
Wait for it: identifying “On-Hold” self-admitted technical debt
Wait for it: identifying “On-Hold” self-admitted technical debtWait for it: identifying “On-Hold” self-admitted technical debt
Wait for it: identifying “On-Hold” self-admitted technical debt
 
Agile maintenance
Agile maintenanceAgile maintenance
Agile maintenance
 
Modeling and Analyzing Openness Trade-Offs in Software Platforms: A Goal-Orie...
Modeling and Analyzing Openness Trade-Offs in Software Platforms: A Goal-Orie...Modeling and Analyzing Openness Trade-Offs in Software Platforms: A Goal-Orie...
Modeling and Analyzing Openness Trade-Offs in Software Platforms: A Goal-Orie...
 
Advantages and Disadvantages of a Monolithic Repository
Advantages and Disadvantages of a Monolithic RepositoryAdvantages and Disadvantages of a Monolithic Repository
Advantages and Disadvantages of a Monolithic Repository
 
tem7
tem7tem7
tem7
 
Open Source Software Survivability Analysis Using Communication Pattern Valid...
Open Source Software Survivability Analysis Using Communication Pattern Valid...Open Source Software Survivability Analysis Using Communication Pattern Valid...
Open Source Software Survivability Analysis Using Communication Pattern Valid...
 
Epics qt application peer reviews
Epics qt application peer reviewsEpics qt application peer reviews
Epics qt application peer reviews
 
Wcre13b.ppt
Wcre13b.pptWcre13b.ppt
Wcre13b.ppt
 
Software bug prediction
Software bug prediction Software bug prediction
Software bug prediction
 
A Mono- and Multi-objective Approach for Recommending Software Refactoring
A Mono- and Multi-objective Approach for Recommending Software RefactoringA Mono- and Multi-objective Approach for Recommending Software Refactoring
A Mono- and Multi-objective Approach for Recommending Software Refactoring
 
Leveraging HPC Resources to Improve the Experimental Design of Software Analy...
Leveraging HPC Resources to Improve the Experimental Design of Software Analy...Leveraging HPC Resources to Improve the Experimental Design of Software Analy...
Leveraging HPC Resources to Improve the Experimental Design of Software Analy...
 
Eclipse community survey 2014 v2
Eclipse community survey 2014 v2Eclipse community survey 2014 v2
Eclipse community survey 2014 v2
 

Semelhante a Implications of Open Source Software Use (or Let's Talk Open Source)

Open Source SW Business
Open Source SW Business Open Source SW Business
Open Source SW Business SANGHEE SHIN
 
Can end user apps also be open source? OW2online'20, June 2020
Can end user apps also be open source? OW2online'20, June 2020Can end user apps also be open source? OW2online'20, June 2020
Can end user apps also be open source? OW2online'20, June 2020OW2
 
A kick-start into Open Source
A kick-start into Open SourceA kick-start into Open Source
A kick-start into Open SourceAbhiram Ravikumar
 
Establishing an Open Source Program Office
Establishing an Open Source Program OfficeEstablishing an Open Source Program Office
Establishing an Open Source Program OfficeLee Calcote
 
FrOSCon: The business value of open source
FrOSCon: The business value of open sourceFrOSCon: The business value of open source
FrOSCon: The business value of open sourceSimon Phipps
 
Open Source
Open SourceOpen Source
Open Sourcenqfaq
 
OPEN SOURCE SEMINAR PRESENTATION
OPEN SOURCE SEMINAR PRESENTATIONOPEN SOURCE SEMINAR PRESENTATION
OPEN SOURCE SEMINAR PRESENTATIONRitwick Halder
 
June 22nd 2016 - Foundation State of the Union - London Meetup @ Red Deer
June 22nd 2016 - Foundation State of the Union - London Meetup @ Red DeerJune 22nd 2016 - Foundation State of the Union - London Meetup @ Red Deer
June 22nd 2016 - Foundation State of the Union - London Meetup @ Red DeerSymphony Software Foundation
 
Open Source Software in Libraries
Open Source Software in LibrariesOpen Source Software in Libraries
Open Source Software in LibrariesSukhdev Singh
 
Aliens in Your Apps! Are You Using Components With Known Vulnerabilities?
Aliens in Your Apps! Are You Using Components With Known Vulnerabilities?Aliens in Your Apps! Are You Using Components With Known Vulnerabilities?
Aliens in Your Apps! Are You Using Components With Known Vulnerabilities?Sonatype
 
OSMC 2021 | Contributing to open source with the example of icinga (1)
OSMC 2021 | Contributing to open source with the example of icinga (1)OSMC 2021 | Contributing to open source with the example of icinga (1)
OSMC 2021 | Contributing to open source with the example of icinga (1)NETWAYS
 
Open Source for Enterprise: Architecting Digital Change.
Open Source for Enterprise: Architecting Digital Change. Open Source for Enterprise: Architecting Digital Change.
Open Source for Enterprise: Architecting Digital Change. Reading Room
 
Open source technology
Open source technologyOpen source technology
Open source technologyRohit Kumar
 
Introduction To Open Source Licenses
Introduction To Open Source LicensesIntroduction To Open Source Licenses
Introduction To Open Source LicensesHarley Pascua
 

Semelhante a Implications of Open Source Software Use (or Let's Talk Open Source) (20)

Open Source vs Proprietary
Open Source vs ProprietaryOpen Source vs Proprietary
Open Source vs Proprietary
 
Open Source Lecture
Open Source LectureOpen Source Lecture
Open Source Lecture
 
Open Source SW Business
Open Source SW Business Open Source SW Business
Open Source SW Business
 
Can end user apps also be open source? OW2online'20, June 2020
Can end user apps also be open source? OW2online'20, June 2020Can end user apps also be open source? OW2online'20, June 2020
Can end user apps also be open source? OW2online'20, June 2020
 
A kick-start into Open Source
A kick-start into Open SourceA kick-start into Open Source
A kick-start into Open Source
 
Aliens in Your Apps!
Aliens in Your Apps!Aliens in Your Apps!
Aliens in Your Apps!
 
Establishing an Open Source Program Office
Establishing an Open Source Program OfficeEstablishing an Open Source Program Office
Establishing an Open Source Program Office
 
FrOSCon: The business value of open source
FrOSCon: The business value of open sourceFrOSCon: The business value of open source
FrOSCon: The business value of open source
 
Open Source
Open SourceOpen Source
Open Source
 
OPEN SOURCE SEMINAR PRESENTATION
OPEN SOURCE SEMINAR PRESENTATIONOPEN SOURCE SEMINAR PRESENTATION
OPEN SOURCE SEMINAR PRESENTATION
 
Asf icfoss-mentoring
Asf icfoss-mentoringAsf icfoss-mentoring
Asf icfoss-mentoring
 
June 22nd 2016 - Foundation State of the Union - London Meetup @ Red Deer
June 22nd 2016 - Foundation State of the Union - London Meetup @ Red DeerJune 22nd 2016 - Foundation State of the Union - London Meetup @ Red Deer
June 22nd 2016 - Foundation State of the Union - London Meetup @ Red Deer
 
Open Source Software in Libraries
Open Source Software in LibrariesOpen Source Software in Libraries
Open Source Software in Libraries
 
Open Source VP.pptx
Open Source VP.pptxOpen Source VP.pptx
Open Source VP.pptx
 
Aliens in Your Apps! Are You Using Components With Known Vulnerabilities?
Aliens in Your Apps! Are You Using Components With Known Vulnerabilities?Aliens in Your Apps! Are You Using Components With Known Vulnerabilities?
Aliens in Your Apps! Are You Using Components With Known Vulnerabilities?
 
OSMC 2021 | Contributing to open source with the example of icinga (1)
OSMC 2021 | Contributing to open source with the example of icinga (1)OSMC 2021 | Contributing to open source with the example of icinga (1)
OSMC 2021 | Contributing to open source with the example of icinga (1)
 
Open Source for Enterprise: Architecting Digital Change.
Open Source for Enterprise: Architecting Digital Change. Open Source for Enterprise: Architecting Digital Change.
Open Source for Enterprise: Architecting Digital Change.
 
Open source technology
Open source technologyOpen source technology
Open source technology
 
Introduction To Open Source Licenses
Introduction To Open Source LicensesIntroduction To Open Source Licenses
Introduction To Open Source Licenses
 
Ijetr042189
Ijetr042189Ijetr042189
Ijetr042189
 

Mais de Gail Murphy

Architecting-Flow-in-SE.pdf
Architecting-Flow-in-SE.pdfArchitecting-Flow-in-SE.pdf
Architecting-Flow-in-SE.pdfGail Murphy
 
Is software engineering research addressing software engineering problems?
Is software engineering research addressing software engineering problems?Is software engineering research addressing software engineering problems?
Is software engineering research addressing software engineering problems?Gail Murphy
 
Making Effective, Useful Software Development Tools
Making Effective, Useful Software Development ToolsMaking Effective, Useful Software Development Tools
Making Effective, Useful Software Development ToolsGail Murphy
 
The Need for Context in Software Engineering
The Need for Context in Software EngineeringThe Need for Context in Software Engineering
The Need for Context in Software EngineeringGail Murphy
 
Impactful SE Research: Some Do's and More Don'ts
Impactful SE Research: Some Do's and More Don'tsImpactful SE Research: Some Do's and More Don'ts
Impactful SE Research: Some Do's and More Don'tsGail Murphy
 
The Elusive Nature of Context: Why We Need It and Were We Might Find It
The Elusive Nature of Context: Why We Need It and Were We Might Find ItThe Elusive Nature of Context: Why We Need It and Were We Might Find It
The Elusive Nature of Context: Why We Need It and Were We Might Find ItGail Murphy
 
Human-centric Software Development Tools
Human-centric Software Development ToolsHuman-centric Software Development Tools
Human-centric Software Development ToolsGail Murphy
 
Is Continuous Adoption in Software Engineering Achievable and Desirable?
Is Continuous Adoption in Software Engineering Achievable and Desirable? Is Continuous Adoption in Software Engineering Achievable and Desirable?
Is Continuous Adoption in Software Engineering Achievable and Desirable? Gail Murphy
 
Acm productivity-webinar-2016-slides
Acm productivity-webinar-2016-slidesAcm productivity-webinar-2016-slides
Acm productivity-webinar-2016-slidesGail Murphy
 
Software Supply Chains
Software Supply ChainsSoftware Supply Chains
Software Supply ChainsGail Murphy
 
Getting to Flow in Software Development (ASWEC 2014 Keynote)
Getting to Flow in Software Development (ASWEC 2014 Keynote)Getting to Flow in Software Development (ASWEC 2014 Keynote)
Getting to Flow in Software Development (ASWEC 2014 Keynote)Gail Murphy
 
The Human Element
The Human ElementThe Human Element
The Human ElementGail Murphy
 
What is Software Development Productivity Anyway?
What is Software Development Productivity Anyway?What is Software Development Productivity Anyway?
What is Software Development Productivity Anyway?Gail Murphy
 

Mais de Gail Murphy (13)

Architecting-Flow-in-SE.pdf
Architecting-Flow-in-SE.pdfArchitecting-Flow-in-SE.pdf
Architecting-Flow-in-SE.pdf
 
Is software engineering research addressing software engineering problems?
Is software engineering research addressing software engineering problems?Is software engineering research addressing software engineering problems?
Is software engineering research addressing software engineering problems?
 
Making Effective, Useful Software Development Tools
Making Effective, Useful Software Development ToolsMaking Effective, Useful Software Development Tools
Making Effective, Useful Software Development Tools
 
The Need for Context in Software Engineering
The Need for Context in Software EngineeringThe Need for Context in Software Engineering
The Need for Context in Software Engineering
 
Impactful SE Research: Some Do's and More Don'ts
Impactful SE Research: Some Do's and More Don'tsImpactful SE Research: Some Do's and More Don'ts
Impactful SE Research: Some Do's and More Don'ts
 
The Elusive Nature of Context: Why We Need It and Were We Might Find It
The Elusive Nature of Context: Why We Need It and Were We Might Find ItThe Elusive Nature of Context: Why We Need It and Were We Might Find It
The Elusive Nature of Context: Why We Need It and Were We Might Find It
 
Human-centric Software Development Tools
Human-centric Software Development ToolsHuman-centric Software Development Tools
Human-centric Software Development Tools
 
Is Continuous Adoption in Software Engineering Achievable and Desirable?
Is Continuous Adoption in Software Engineering Achievable and Desirable? Is Continuous Adoption in Software Engineering Achievable and Desirable?
Is Continuous Adoption in Software Engineering Achievable and Desirable?
 
Acm productivity-webinar-2016-slides
Acm productivity-webinar-2016-slidesAcm productivity-webinar-2016-slides
Acm productivity-webinar-2016-slides
 
Software Supply Chains
Software Supply ChainsSoftware Supply Chains
Software Supply Chains
 
Getting to Flow in Software Development (ASWEC 2014 Keynote)
Getting to Flow in Software Development (ASWEC 2014 Keynote)Getting to Flow in Software Development (ASWEC 2014 Keynote)
Getting to Flow in Software Development (ASWEC 2014 Keynote)
 
The Human Element
The Human ElementThe Human Element
The Human Element
 
What is Software Development Productivity Anyway?
What is Software Development Productivity Anyway?What is Software Development Productivity Anyway?
What is Software Development Productivity Anyway?
 

Último

Try MyIntelliAccount Cloud Accounting Software As A Service Solution Risk Fre...
Try MyIntelliAccount Cloud Accounting Software As A Service Solution Risk Fre...Try MyIntelliAccount Cloud Accounting Software As A Service Solution Risk Fre...
Try MyIntelliAccount Cloud Accounting Software As A Service Solution Risk Fre...MyIntelliSource, Inc.
 
Reassessing the Bedrock of Clinical Function Models: An Examination of Large ...
Reassessing the Bedrock of Clinical Function Models: An Examination of Large ...Reassessing the Bedrock of Clinical Function Models: An Examination of Large ...
Reassessing the Bedrock of Clinical Function Models: An Examination of Large ...harshavardhanraghave
 
5 Signs You Need a Fashion PLM Software.pdf
5 Signs You Need a Fashion PLM Software.pdf5 Signs You Need a Fashion PLM Software.pdf
5 Signs You Need a Fashion PLM Software.pdfWave PLM
 
The Real-World Challenges of Medical Device Cybersecurity- Mitigating Vulnera...
The Real-World Challenges of Medical Device Cybersecurity- Mitigating Vulnera...The Real-World Challenges of Medical Device Cybersecurity- Mitigating Vulnera...
The Real-World Challenges of Medical Device Cybersecurity- Mitigating Vulnera...ICS
 
Unlocking the Future of AI Agents with Large Language Models
Unlocking the Future of AI Agents with Large Language ModelsUnlocking the Future of AI Agents with Large Language Models
Unlocking the Future of AI Agents with Large Language Modelsaagamshah0812
 
Hand gesture recognition PROJECT PPT.pptx
Hand gesture recognition PROJECT PPT.pptxHand gesture recognition PROJECT PPT.pptx
Hand gesture recognition PROJECT PPT.pptxbodapatigopi8531
 
Right Money Management App For Your Financial Goals
Right Money Management App For Your Financial GoalsRight Money Management App For Your Financial Goals
Right Money Management App For Your Financial GoalsJhone kinadey
 
+971565801893>>SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHAB...
+971565801893>>SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHAB...+971565801893>>SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHAB...
+971565801893>>SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHAB...Health
 
Software Quality Assurance Interview Questions
Software Quality Assurance Interview QuestionsSoftware Quality Assurance Interview Questions
Software Quality Assurance Interview QuestionsArshad QA
 
Optimizing AI for immediate response in Smart CCTV
Optimizing AI for immediate response in Smart CCTVOptimizing AI for immediate response in Smart CCTV
Optimizing AI for immediate response in Smart CCTVshikhaohhpro
 
Diamond Application Development Crafting Solutions with Precision
Diamond Application Development Crafting Solutions with PrecisionDiamond Application Development Crafting Solutions with Precision
Diamond Application Development Crafting Solutions with PrecisionSolGuruz
 
HR Software Buyers Guide in 2024 - HRSoftware.com
HR Software Buyers Guide in 2024 - HRSoftware.comHR Software Buyers Guide in 2024 - HRSoftware.com
HR Software Buyers Guide in 2024 - HRSoftware.comFatema Valibhai
 
CALL ON ➥8923113531 🔝Call Girls Kakori Lucknow best sexual service Online ☂️
CALL ON ➥8923113531 🔝Call Girls Kakori Lucknow best sexual service Online ☂️CALL ON ➥8923113531 🔝Call Girls Kakori Lucknow best sexual service Online ☂️
CALL ON ➥8923113531 🔝Call Girls Kakori Lucknow best sexual service Online ☂️anilsa9823
 
TECUNIQUE: Success Stories: IT Service provider
TECUNIQUE: Success Stories: IT Service providerTECUNIQUE: Success Stories: IT Service provider
TECUNIQUE: Success Stories: IT Service providermohitmore19
 
call girls in Vaishali (Ghaziabad) 🔝 >༒8448380779 🔝 genuine Escort Service 🔝✔️✔️
call girls in Vaishali (Ghaziabad) 🔝 >༒8448380779 🔝 genuine Escort Service 🔝✔️✔️call girls in Vaishali (Ghaziabad) 🔝 >༒8448380779 🔝 genuine Escort Service 🔝✔️✔️
call girls in Vaishali (Ghaziabad) 🔝 >༒8448380779 🔝 genuine Escort Service 🔝✔️✔️Delhi Call girls
 
Tech Tuesday-Harness the Power of Effective Resource Planning with OnePlan’s ...
Tech Tuesday-Harness the Power of Effective Resource Planning with OnePlan’s ...Tech Tuesday-Harness the Power of Effective Resource Planning with OnePlan’s ...
Tech Tuesday-Harness the Power of Effective Resource Planning with OnePlan’s ...OnePlan Solutions
 
How To Troubleshoot Collaboration Apps for the Modern Connected Worker
How To Troubleshoot Collaboration Apps for the Modern Connected WorkerHow To Troubleshoot Collaboration Apps for the Modern Connected Worker
How To Troubleshoot Collaboration Apps for the Modern Connected WorkerThousandEyes
 
Unveiling the Tech Salsa of LAMs with Janus in Real-Time Applications
Unveiling the Tech Salsa of LAMs with Janus in Real-Time ApplicationsUnveiling the Tech Salsa of LAMs with Janus in Real-Time Applications
Unveiling the Tech Salsa of LAMs with Janus in Real-Time ApplicationsAlberto González Trastoy
 

Último (20)

Try MyIntelliAccount Cloud Accounting Software As A Service Solution Risk Fre...
Try MyIntelliAccount Cloud Accounting Software As A Service Solution Risk Fre...Try MyIntelliAccount Cloud Accounting Software As A Service Solution Risk Fre...
Try MyIntelliAccount Cloud Accounting Software As A Service Solution Risk Fre...
 
Reassessing the Bedrock of Clinical Function Models: An Examination of Large ...
Reassessing the Bedrock of Clinical Function Models: An Examination of Large ...Reassessing the Bedrock of Clinical Function Models: An Examination of Large ...
Reassessing the Bedrock of Clinical Function Models: An Examination of Large ...
 
5 Signs You Need a Fashion PLM Software.pdf
5 Signs You Need a Fashion PLM Software.pdf5 Signs You Need a Fashion PLM Software.pdf
5 Signs You Need a Fashion PLM Software.pdf
 
The Real-World Challenges of Medical Device Cybersecurity- Mitigating Vulnera...
The Real-World Challenges of Medical Device Cybersecurity- Mitigating Vulnera...The Real-World Challenges of Medical Device Cybersecurity- Mitigating Vulnera...
The Real-World Challenges of Medical Device Cybersecurity- Mitigating Vulnera...
 
Vip Call Girls Noida ➡️ Delhi ➡️ 9999965857 No Advance 24HRS Live
Vip Call Girls Noida ➡️ Delhi ➡️ 9999965857 No Advance 24HRS LiveVip Call Girls Noida ➡️ Delhi ➡️ 9999965857 No Advance 24HRS Live
Vip Call Girls Noida ➡️ Delhi ➡️ 9999965857 No Advance 24HRS Live
 
Unlocking the Future of AI Agents with Large Language Models
Unlocking the Future of AI Agents with Large Language ModelsUnlocking the Future of AI Agents with Large Language Models
Unlocking the Future of AI Agents with Large Language Models
 
Hand gesture recognition PROJECT PPT.pptx
Hand gesture recognition PROJECT PPT.pptxHand gesture recognition PROJECT PPT.pptx
Hand gesture recognition PROJECT PPT.pptx
 
Right Money Management App For Your Financial Goals
Right Money Management App For Your Financial GoalsRight Money Management App For Your Financial Goals
Right Money Management App For Your Financial Goals
 
+971565801893>>SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHAB...
+971565801893>>SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHAB...+971565801893>>SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHAB...
+971565801893>>SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHAB...
 
Software Quality Assurance Interview Questions
Software Quality Assurance Interview QuestionsSoftware Quality Assurance Interview Questions
Software Quality Assurance Interview Questions
 
Optimizing AI for immediate response in Smart CCTV
Optimizing AI for immediate response in Smart CCTVOptimizing AI for immediate response in Smart CCTV
Optimizing AI for immediate response in Smart CCTV
 
Diamond Application Development Crafting Solutions with Precision
Diamond Application Development Crafting Solutions with PrecisionDiamond Application Development Crafting Solutions with Precision
Diamond Application Development Crafting Solutions with Precision
 
HR Software Buyers Guide in 2024 - HRSoftware.com
HR Software Buyers Guide in 2024 - HRSoftware.comHR Software Buyers Guide in 2024 - HRSoftware.com
HR Software Buyers Guide in 2024 - HRSoftware.com
 
CALL ON ➥8923113531 🔝Call Girls Kakori Lucknow best sexual service Online ☂️
CALL ON ➥8923113531 🔝Call Girls Kakori Lucknow best sexual service Online ☂️CALL ON ➥8923113531 🔝Call Girls Kakori Lucknow best sexual service Online ☂️
CALL ON ➥8923113531 🔝Call Girls Kakori Lucknow best sexual service Online ☂️
 
TECUNIQUE: Success Stories: IT Service provider
TECUNIQUE: Success Stories: IT Service providerTECUNIQUE: Success Stories: IT Service provider
TECUNIQUE: Success Stories: IT Service provider
 
call girls in Vaishali (Ghaziabad) 🔝 >༒8448380779 🔝 genuine Escort Service 🔝✔️✔️
call girls in Vaishali (Ghaziabad) 🔝 >༒8448380779 🔝 genuine Escort Service 🔝✔️✔️call girls in Vaishali (Ghaziabad) 🔝 >༒8448380779 🔝 genuine Escort Service 🔝✔️✔️
call girls in Vaishali (Ghaziabad) 🔝 >༒8448380779 🔝 genuine Escort Service 🔝✔️✔️
 
Tech Tuesday-Harness the Power of Effective Resource Planning with OnePlan’s ...
Tech Tuesday-Harness the Power of Effective Resource Planning with OnePlan’s ...Tech Tuesday-Harness the Power of Effective Resource Planning with OnePlan’s ...
Tech Tuesday-Harness the Power of Effective Resource Planning with OnePlan’s ...
 
How To Troubleshoot Collaboration Apps for the Modern Connected Worker
How To Troubleshoot Collaboration Apps for the Modern Connected WorkerHow To Troubleshoot Collaboration Apps for the Modern Connected Worker
How To Troubleshoot Collaboration Apps for the Modern Connected Worker
 
CHEAP Call Girls in Pushp Vihar (-DELHI )🔝 9953056974🔝(=)/CALL GIRLS SERVICE
CHEAP Call Girls in Pushp Vihar (-DELHI )🔝 9953056974🔝(=)/CALL GIRLS SERVICECHEAP Call Girls in Pushp Vihar (-DELHI )🔝 9953056974🔝(=)/CALL GIRLS SERVICE
CHEAP Call Girls in Pushp Vihar (-DELHI )🔝 9953056974🔝(=)/CALL GIRLS SERVICE
 
Unveiling the Tech Salsa of LAMs with Janus in Real-Time Applications
Unveiling the Tech Salsa of LAMs with Janus in Real-Time ApplicationsUnveiling the Tech Salsa of LAMs with Janus in Real-Time Applications
Unveiling the Tech Salsa of LAMs with Janus in Real-Time Applications
 

Implications of Open Source Software Use (or Let's Talk Open Source)

  • 1. Let’s Talk
 Open Source or… Implications of Open Source Software Use Gail C. Murphy
 University of British Columbia Tasktop Technologies @gail_murphy A restrictive license has been chosen given unpublished work, and descriptions of others work
  • 2. 2 Who Are You? Let’s Talk Open Source 
 Code multiple days a week Ü Mostly Organize Coding Ü Something Else Ü
  • 3. 3Let’s Talk Open Source Here’s My Plan Integral and Critical ! Managing Use á Implications „
  • 4. 4 The Take-Aways Let’s Talk Open Source Open source: does not mean free Open source:
 use requires
 knowledge Open source: the fabric on which software development occurs
  • 5. START Keynote Presentation Template Welcome to the best experience ı have in this presentation Where a variety of sections, easy and to understand is demonstrated  ! Integral and Critical
  • 6. 6 Supply of Open Source Components Let’s Talk Open Source:
 Integral and Critical suppliers total 
 components >105K >834K (Java) central repository GitHub project dependences 2015 State of the Software: Supply Chain Report (Sonatype)
  • 7. 7 Why Use Open Source Components? Let’s Talk Open Source:
 Integral and Critical build products (and other components) faster
 
 higher-quality components
 
 lower cost to (re)use
 
 ongoing updates
  • 8. 8 Use of Open Source Components Let’s Talk Open Source:
 Integral and Critical 17.2 Billion 
 Requests Served Java components in 2014 to >106K organizations 2015 State of the Software: Supply Chain Report (Sonatype)
  • 9. 9 What Happens When Open Source Components Fail? Let’s Talk Open Source:
 Integral and Critical https://xkcd.com/1354/
  • 10. 10 What Happens When Open Source Components Fail? Let’s Talk Open Source:
 Integral and Critical https://xkcd.com/1354/
  • 11. 11 What Happens When Open Source Components Fail? Let’s Talk Open Source:
 Integral and Critical https://xkcd.com/1354/
  • 12. 12 What Happens When Open Source Components Fail? Let’s Talk Open Source:
 Integral and Critical Economist, Apr 12, 2014
  • 13. 13 Even When Better Versions of Components Exist… Let’s Talk Open Source:
 Integral and Critical CVE-2007-6721
 CVSS 10
 Exploitability 10 since identification… 11,236 organizations have downloaded the vulnerable component 214,484 times 2015 State of the Software: Supply Chain Report (Sonatype)
  • 14. 14 Even When Better Versions of Components Exist… Let’s Talk Open Source:
 Integral and Critical 2015 State of the Software: Supply Chain Report (Sonatype) of 240,757 component downloads by large financial or technology firms in 2014… were of known defective part and or those with a defective part, the defects were older than 2013 7.5% 66%
  • 15. 15 Availability Matters Too Let’s Talk Open Source:
 Integral and Critical
  • 16. 16 The Take-Aways: Integral and Critical Let’s Talk Open Source:
 Managing Use Open source: the fabric on which software development occurs
  • 17. START Keynote Presentation Template Welcome to the best experience ı have in this presentation Where a variety of sections, easy and to understand is demonstrated   Managing Use á
  • 18. 18 Murphy, Personnel Correspondence, 2016 Interviews with Engineering Leaders SME 4 1 2
  • 19. 19 Interviews with Engineering Leaders Let’s Talk Open Source:
 Managing Use Open before Closed Investigate open source - who else is using? - how many contributors? - support model? - security profile? Know they might need to fork Some place committers on project Murphy, Personnel Correspondence, 2016
  • 20. 20 Need for Controls Let’s Talk Open Source:
 Managing Use
  • 21. 21 The Take-Aways: Managing Use Let’s Talk Open Source Open source: does not mean free
  • 22. START Keynote Presentation Template Welcome to the best experience ı have in this presentation Where a variety of sections, easy and to understand is demonstrated   Implications „
  • 23. START Keynote Presentation Template Welcome to the best experience ı have in this presentation Where a variety of sections, easy and to understand is demonstrated   Analysis of 1000s of GitHub Projects
  • 24. 24 What Kind of Component You Are Depending On? Let’s Talk Open Source:
 Implications Guava Vault Junit 0% 25% 50% 75% 100% 4 32 256 2048 Number of user projects Rs:Ratioofuserprojectshavingsocialinteractions Palyart, Murphy, Masrani 2016, in progress
  • 25. 25 Set Your Expectations Let’s Talk Open Source:
 Implications 0 500 1000 1500 4 32 256 2048 Number of user projects Medianinvolvementtime Palyart, Murphy, Masrani 2016, in progress
  • 26. 26 Set Your Expectations Let’s Talk Open Source:
 Implications Technical dependence before social interaction Social interaction before technical dependence Palyart, Murphy, Masrani 2016, in progress
  • 27. 27 Set Your Expectations Let’s Talk Open Source:
 Implications 1 10 100 1000 10000 Social before technical Technical before social Numberofcontributions Palyart, Murphy, Masrani 2016, in progress
  • 28. START Keynote Presentation Template Welcome to the best experience ı have in this presentation Where a variety of sections, easy and to understand is demonstrated   Survey about Software Licenses
  • 29. 29 Know the Impact of Choosing an Open Source Component Let’s Talk Open Source:
 Implications John has been working on ToDoApp, his own personal task management
 application. ToDoApp is going to be a desktop-based application that will
 be used exclusively by John on his own computer. To make sure he does not
 lose any of his very special tasks, John is planning to use a lightweight
 library called LightDB to persist ToDoApp’s data.
 
 If LightDB is distributed under the following licenses, would John be
 allowed to use it as part of ToDoApp?
 
 GNU GPL 3.0
 GNU LGPL 3.0
 MPL 2.0 UnsureNoYes UnsureNoYes UnsureNoYes Almedia, Murphy, Wilson, Hoye, 2016, under submission
  • 30. 30 Know the Impact of Choosing an Open Source Component Let’s Talk Open Source:
 Implications If LightDB is distributed under the following licenses, would John be
 allowed to use it as part of ToDoApp?
 
 GNU GPL 3.0
 GNU LGPL 3.0
 MPL 2.0 Yes Yes Yes 375
 respondents Almedia, Murphy, Wilson, Hoye, 2016, under submission
  • 31. 31 Know the Impact of Choosing an Open Source Component Let’s Talk Open Source:
 Implications As the lead developer of a new product at GreatSoftware Inc., Laura decided to
 use an existing authentication library she found on the web called SafeAuth.
 She realizes that SafeAuth could be improved using a stronger cryptographic
 algorithm when storing users’ information. The product is going to be released
 under a commercial software license, but Laura would like to release the
 improved version of SafeAuth as open source.
 
 If SafeAuth is distributed under MPL, would Laura and her team be allowed to release the improved version of SafeAuth as open source.
 
 GNU GPL 3.0
 GNU LGPL 3.0
 MPL 2.0 UnsureNoYes UnsureNoYes UnsureNoYes Almedia, Murphy, Wilson, Hoye, 2016, under submission
  • 32. 32 Know the Impact of Choosing an Open Source Component Let’s Talk Open Source:
 Implications If SafeAuth is distributed under MPL, would Laura and her team be allowed to release the improved version of SafeAuth as open source.
 
 GNU GPL 3.0
 GNU LGPL 3.0
 MPL 2.0 No No Yes 375
 respondents Almedia, Murphy, Wilson, Hoye, 2016, under submission
  • 33. 33 The Take-Aways: Implications Let’s Talk Open Source Open source:
 use requires
 knowledge
  • 35. 35 The Take-Aways Let’s Talk Open Source Open source: does not mean free Open source:
 use requires
 knowledge Open source: the fabric on which software development occurs @gail_murphy