Is your business compliant with open source licenses?

A free tool from the Linux Foundation helps businesses assess their open-source compliance & focus their efforts accordingly.

There are many ways that vendors of proprietary products try to scare business customers away from open source software, and one of the more commonly heard examples involves vague fears about compliance with open source licenses. There's nothing like the specter of a good lawsuit to scare a company back into a paid vendor's welcoming arms.

Open source software such as Linux does involve licenses, it's true, but complying with those licenses should not impose any significant burden on the company using such software. Nor should it be a reason to use proprietary products instead.

Aiming to help quash such fear, uncertainty and doubt, and to help companies focus their compliance efforts, the Linux Foundation this week unveiled a free self-assessment checklist designed to reduce the cost and complexity involved for the increasing number of companies using Linux.

Open Compliance Program

The Linux Foundation actually runs a full-fledged compliance program aimed at easing the adoption of open source software, and it includes a variety of free tools and education materials, comprehensive professional training, an online compliance community for exchanging compliance best practices, and more.

Founding participants of the program include Adobe, AMD, ARM Limited, Cisco Systems, Google, HP, IBM, Intel, Motorola, NEC, Nokia, Novell, Samsung, the Software Freedom Law Center and Sony Electronics.

The new checklist, meanwhile, is designed to provide a confidential internal tool that companies can use to assess their progress with a rigorous compliance process, and to prioritize their improvement efforts.

A process failure modes effects analysis (FMEA) approach, for example, identifies the ways a compliance attempt can fail, as well as practices that can help prevent that from happening. More than 100 practices are identified in the checklist, all focusing on what needs to be done.

The checklist can help companies prioritize process improvement efforts in the areas of greatest payoff. Plus, it can be used to assess a supplier's compliance practices and gauge the likely reliability of its open source disclosures. Based on practices found in industry-leading compliance programs, the tool will improve the effectiveness of such programs and deliver tangible benefit relative to the cost of those practices, the Linux Foundation says.

A Free Download

While it's not a guarantee of compliance, nor does it provide specific guidance on interpreting the GNU General Public License (GPL)--there are companies for hire that offer such assistance--the checklist does help companies make sure that they have the necessary policies, tools, and resources in place to comply with open source licenses.

"Compliance is essential if companies are to gain the maximum benefit from use of free and open source software while respecting license obligations," as the foundation points out.

How does your company measure up? Find out by downloading the Self-Assessment Checklist (registration required) and trying it out for yourself.

Follow Katherine Noyes on Twitter: @Noyesk.

Join the Good Gear Guide newsletter!

Error: Please check your email address.

Tags unixtech supportopen sourceLinuxlinux foundationsoftwarenon-Windowsoperating systems

Our Back to Business guide highlights the best products for you to boost your productivity at home, on the road, at the office, or in the classroom.

Keep up with the latest tech news, reviews and previews by subscribing to the Good Gear Guide newsletter.

Katherine Noyes

PC World (US online)
Show Comments

Cool Tech

Xiro Drone Xplorer V -3 Axis Gimbal & 1080p Full HD 14MP Camera

Learn more >

D-Link TAIPAN AC3200 Ultra Wi-Fi Modem Router (DSL-4320L)

Learn more >

Lexar® Professional 1000x microSDHC™/microSDXC™ UHS-II cards

Learn more >

Crucial® BX200 SATA 2.5” 7mm (with 9.5mm adapter) Internal Solid State Drive

Learn more >

ASUS ROG Swift PG279Q – Reign beyond virtual world

Learn more >

D-Link PowerLine AV2 2000 Gigabit Network Kit

Learn more >

Gadgets & Things

Lexar® Professional 1000x microSDHC™/microSDXC™ UHS-II cards

Learn more >


Learn more >

Lexar Professional 2000x SDHC™/SDXC™ UHS-II cards

Learn more >

Family Friendly

Lexar Professional 2000x SDHC™/SDXC™ UHS-II cards

Learn more >

ASUS VivoPC VM62 - Incredibly Powerful, Unbelievably Small

Learn more >

Lexar® Professional 1000x microSDHC™/microSDXC™ UHS-II cards

Learn more >

Stocking Stuffer

Lexar Professional 2000x SDHC™/SDXC™ UHS-II cards

Learn more >

Lexar® Professional 1000x microSDHC™/microSDXC™ UHS-II cards

Learn more >

Christmas Gift Guide

Click for more ›

Most Popular Reviews

Best Deals on Good Gear Guide

Latest News Articles


GGG Evaluation Team

Kathy Cassidy


First impression on unpacking the Q702 test unit was the solid feel and clean, minimalist styling.

Anthony Grifoni


For work use, Microsoft Word and Excel programs pre-installed on the device are adequate for preparing short documents.

Steph Mundell


The Fujitsu LifeBook UH574 allowed for great mobility without being obnoxiously heavy or clunky. Its twelve hours of battery life did not disappoint.

Andrew Mitsi


The screen was particularly good. It is bright and visible from most angles, however heat is an issue, particularly around the Windows button on the front, and on the back where the battery housing is located.

Simon Harriott


My first impression after unboxing the Q702 is that it is a nice looking unit. Styling is somewhat minimalist but very effective. The tablet part, once detached, has a nice weight, and no buttons or switches are located in awkward or intrusive positions.


Latest Jobs

Don’t have an account? Sign up here

Don't have an account? Sign up now

Forgot password?