The Role of Legal Counsels in Focusing Compliance on Scaling and Execution
-
Upload
samsung-open-source-group -
Category
Technology
-
view
122 -
download
4
description
Transcript of The Role of Legal Counsels in Focusing Compliance on Scaling and Execution
![Page 1: The Role of Legal Counsels in Focusing Compliance on Scaling and Execution](https://reader033.fdocuments.net/reader033/viewer/2022052823/5552ae9cb4c9052e568b4b90/html5/thumbnails/1.jpg)
1 © 2013 SAMSUNG Electronics Co.Open Source Group – Silicon Valley
Ibrahim Haddad, Ph.D.Head of Open Source Group
Samsung Research America (Silicon Valley) [email protected]
@IbrahimAtLinux
The Role of Legal Counsels in Focusing Open Source Compliance on Scaling and Execution
![Page 2: The Role of Legal Counsels in Focusing Compliance on Scaling and Execution](https://reader033.fdocuments.net/reader033/viewer/2022052823/5552ae9cb4c9052e568b4b90/html5/thumbnails/2.jpg)
2 © 2013 SAMSUNG Electronics Co.Open Source Group – Silicon Valley
Abstract
Open Source initiatives and projects provide companies with a vehi-
cle to accelerate innovation through collaboration with the
global community of open source developers.
However, accompanying the benefits of teaming with the open
source community are important responsibilities: Companies must
ensure compliance with applicable open source license obligations.
In this talk, we look closely at the role of the Legal Counsel in ensur-
ing open source compliance and discuss a number of practical ad-
vice that a Legal Counsel can provide to the software develop-
ment team. Such practical advice will enable software developers to
make daily decisions related to open source licenses without having
to go back to the Legal Counsel for every single question.
![Page 3: The Role of Legal Counsels in Focusing Compliance on Scaling and Execution](https://reader033.fdocuments.net/reader033/viewer/2022052823/5552ae9cb4c9052e568b4b90/html5/thumbnails/3.jpg)
3 © 2013 SAMSUNG Electronics Co.Open Source Group – Silicon Valley
Disclaimers
IANAL + TINLA
![Page 4: The Role of Legal Counsels in Focusing Compliance on Scaling and Execution](https://reader033.fdocuments.net/reader033/viewer/2022052823/5552ae9cb4c9052e568b4b90/html5/thumbnails/4.jpg)
4 © 2013 SAMSUNG Electronics Co.Open Source Group – Silicon Valley
Smart Companies Have an Open Source Strategy
They also have proper soft infrastructure to support working with open source commu-nities.
![Page 5: The Role of Legal Counsels in Focusing Compliance on Scaling and Execution](https://reader033.fdocuments.net/reader033/viewer/2022052823/5552ae9cb4c9052e568b4b90/html5/thumbnails/5.jpg)
5 © 2013 SAMSUNG Electronics Co.Open Source Group – Silicon Valley
Example of a Usage / Compliance Process(Used to approve the inclusion of open source code in a commercial product)
For a detailed discussion about the compliance process, please refer to the Linux Foun-
dation compliance publications available from http://compliance.linuxfounda-
tion.org.
Incoming Software
Iden
tifi
cati
on
Au
dit
Resolv
e I
s-
su
es
Revie
ws
Ap
pro
vals
Reg
istr
ati
on
Noti
ces
Dis
trib
uti
on
Veri
ficati
on
s
Proprietary Software
3rd Party Software
FOSS
Outgoing Software
Open Source BoM: Notices & Attribu-
tions
Written Offer
![Page 6: The Role of Legal Counsels in Focusing Compliance on Scaling and Execution](https://reader033.fdocuments.net/reader033/viewer/2022052823/5552ae9cb4c9052e568b4b90/html5/thumbnails/6.jpg)
6 © 2013 SAMSUNG Electronics Co.Open Source Group – Silicon Valley
People Involved in the Compliance Process
Developers / Software Architects
Open Source Compliance Staff
Software Development Managers
Legal Counsel
Compliance Officer (aka Director or Manager of Open
Source)
![Page 7: The Role of Legal Counsels in Focusing Compliance on Scaling and Execution](https://reader033.fdocuments.net/reader033/viewer/2022052823/5552ae9cb4c9052e568b4b90/html5/thumbnails/7.jpg)
7 © 2013 SAMSUNG Electronics Co.Open Source Group – Silicon Valley
Role of Legal Counsel in the Compliance Process
Core responsibilities include:
1. Advise on open source licensing
2. Provide approval around the use of open source in prod-
ucts
3. Contribute to establishing and running the compliance
program
4. Provide training around open source licenses, policies and
guidelines
![Page 8: The Role of Legal Counsels in Focusing Compliance on Scaling and Execution](https://reader033.fdocuments.net/reader033/viewer/2022052823/5552ae9cb4c9052e568b4b90/html5/thumbnails/8.jpg)
8 © 2013 SAMSUNG Electronics Co.Open Source Group – Silicon Valley
How can the Legal Counsel scale support for open source in their org?
![Page 9: The Role of Legal Counsels in Focusing Compliance on Scaling and Execution](https://reader033.fdocuments.net/reader033/viewer/2022052823/5552ae9cb4c9052e568b4b90/html5/thumbnails/9.jpg)
9 © 2013 SAMSUNG Electronics Co.Open Source Group – Silicon Valley
Practical Legal Advice at Your Fingertips
License playbooks
License compatibility information
License classification information
Approved software interaction methods
Checklists
![Page 10: The Role of Legal Counsels in Focusing Compliance on Scaling and Execution](https://reader033.fdocuments.net/reader033/viewer/2022052823/5552ae9cb4c9052e568b4b90/html5/thumbnails/10.jpg)
10 © 2013 SAMSUNG Electronics Co.Open Source Group – Silicon Valley
1. License Playbooks
An easy to read and understand summary of licenses in-
tended for software developers.
For each commonly used license provide a playbook that
includes:
- Name / Version / URL
- Executive Summary
- Grant
- Limitations
- Warranty
- Obligations
- Patent Notes
- Etc.
![Page 11: The Role of Legal Counsels in Focusing Compliance on Scaling and Execution](https://reader033.fdocuments.net/reader033/viewer/2022052823/5552ae9cb4c9052e568b4b90/html5/thumbnails/11.jpg)
11 © 2013 SAMSUNG Electronics Co.Open Source Group – Silicon Valley
License Playbook – Example from tldrle-gal.com
This
exam
ple
is
pro
vid
ed f
or
illust
rati
on p
urp
ose
s only
.This
is
not
an e
ndors
em
ent.
![Page 12: The Role of Legal Counsels in Focusing Compliance on Scaling and Execution](https://reader033.fdocuments.net/reader033/viewer/2022052823/5552ae9cb4c9052e568b4b90/html5/thumbnails/12.jpg)
12 © 2013 SAMSUNG Electronics Co.Open Source Group – Silicon Valley
License Playbook – Example from tldrle-gal.com
This
exam
ple
is
pro
vid
ed f
or
illust
rati
on p
urp
ose
s only
.This
is
not
an e
ndors
em
ent.
![Page 13: The Role of Legal Counsels in Focusing Compliance on Scaling and Execution](https://reader033.fdocuments.net/reader033/viewer/2022052823/5552ae9cb4c9052e568b4b90/html5/thumbnails/13.jpg)
13 © 2013 SAMSUNG Electronics Co.Open Source Group – Silicon Valley
2. Compatibility Matrix
License compatibility issues arises when developers com-
bine code from different sources into a single work.
License(s) ?
Li-cense
C
Li-cense
B
Li-cense
A
Incoming Licenses = A + B + COutgoing License(s) = ?
![Page 14: The Role of Legal Counsels in Focusing Compliance on Scaling and Execution](https://reader033.fdocuments.net/reader033/viewer/2022052823/5552ae9cb4c9052e568b4b90/html5/thumbnails/14.jpg)
14 © 2013 SAMSUNG Electronics Co.Open Source Group – Silicon Valley
License Compatibility Matrix
A license compatibility matrix is an easy visual method to
identify if License-A is compatible with License-B.
A license compatibility matrix is prepared by Legal Coun-
sels for the 10-15 most commonly-used licenses.
![Page 15: The Role of Legal Counsels in Focusing Compliance on Scaling and Execution](https://reader033.fdocuments.net/reader033/viewer/2022052823/5552ae9cb4c9052e568b4b90/html5/thumbnails/15.jpg)
15 © 2013 SAMSUNG Electronics Co.Open Source Group – Silicon Valley
License Compatibility Matrix – Simple View
Is Compatible With:
License-A License-B License-C License-D License-E License-F License-G
License-A X X X
License-B X
License-C X
License-D X X X
License-E X
License-F X X
License-G X X
![Page 16: The Role of Legal Counsels in Focusing Compliance on Scaling and Execution](https://reader033.fdocuments.net/reader033/viewer/2022052823/5552ae9cb4c9052e568b4b90/html5/thumbnails/16.jpg)
16 © 2013 SAMSUNG Electronics Co.Open Source Group – Silicon Valley
License Compatibility Matrix: Elaborate Example
![Page 17: The Role of Legal Counsels in Focusing Compliance on Scaling and Execution](https://reader033.fdocuments.net/reader033/viewer/2022052823/5552ae9cb4c9052e568b4b90/html5/thumbnails/17.jpg)
17 © 2013 SAMSUNG Electronics Co.Open Source Group – Silicon Valley
License Compatibility Matrix: Look at the Sources
GNU.org
Apache.org
CreativeCommons.org
Etc.
![Page 18: The Role of Legal Counsels in Focusing Compliance on Scaling and Execution](https://reader033.fdocuments.net/reader033/viewer/2022052823/5552ae9cb4c9052e568b4b90/html5/thumbnails/18.jpg)
18 © 2013 SAMSUNG Electronics Co.Open Source Group – Silicon Valley
3. Classification
An easy way to understand the approval process for differ-
ent licenses and the course of action needed when using
these licenses.
![Page 19: The Role of Legal Counsels in Focusing Compliance on Scaling and Execution](https://reader033.fdocuments.net/reader033/viewer/2022052823/5552ae9cb4c9052e568b4b90/html5/thumbnails/19.jpg)
19 © 2013 SAMSUNG Electronics Co.Open Source Group – Silicon Valley
License Classification – Example 1
Example of classification system is to rank licenses from 0
to 5 where:- 5 Pre-approved [Licenses: A, B, E, K]- 4 High chance of approval [Licenses: C, G,J]- 3 Medium chance of approval [etc.]- 2 Low chance of approval [etc.]- 1 Not approved – against policy [Licenses: F, L]
![Page 20: The Role of Legal Counsels in Focusing Compliance on Scaling and Execution](https://reader033.fdocuments.net/reader033/viewer/2022052823/5552ae9cb4c9052e568b4b90/html5/thumbnails/20.jpg)
20 © 2013 SAMSUNG Electronics Co.Open Source Group – Silicon Valley
License Classification – Example 2
Another example of classification system:
Permissive
License-ALicense-BLicense-CLicense-D
Modificationsto be released License-ELicense-FLicense-G
Patent Clause
License-HLicense-ILicense-K
Notes:Source code licensedunder these licensesis pre-approved and can be combined with proprietary software.
Notes:Modifications made to source codelicensed under theselicense must be released back
Notes:Due to patent clause,you must discuss with legal counsel about your planned usage.
Not Allowed
License-LLicense-M
Notes:Company policyprohibits use of source code under these licenses.
Pre-approved Requires approval of engineering
manager
Requires Legal Counsel ap-
proval
Not ap-proved
![Page 21: The Role of Legal Counsels in Focusing Compliance on Scaling and Execution](https://reader033.fdocuments.net/reader033/viewer/2022052823/5552ae9cb4c9052e568b4b90/html5/thumbnails/21.jpg)
21 © 2013 SAMSUNG Electronics Co.Open Source Group – Silicon Valley
4. Approved Software (License) Interactions
The goal is to understand how a specific software compo-
nent interacts with other software components and the
method of interaction:- Components that are Open Source (used “as is” or modified) - Components that are proprietary- Components originating from third party software providers - Component dependencies- Communication protocols - Linkage method Dynamic versus static linking- Components that live in kernel space versus user space- Use of shared header files- Etc.
![Page 22: The Role of Legal Counsels in Focusing Compliance on Scaling and Execution](https://reader033.fdocuments.net/reader033/viewer/2022052823/5552ae9cb4c9052e568b4b90/html5/thumbnails/22.jpg)
22 © 2013 SAMSUNG Electronics Co.Open Source Group – Silicon Valley
Software Interactions
![Page 23: The Role of Legal Counsels in Focusing Compliance on Scaling and Execution](https://reader033.fdocuments.net/reader033/viewer/2022052823/5552ae9cb4c9052e568b4b90/html5/thumbnails/23.jpg)
23 © 2013 SAMSUNG Electronics Co.Open Source Group – Silicon Valley
Software Interactions
Can Dynamically Link To
License-A License-B License-C License-D
License-A X X X X
License-B X X
License-C X X
License-D X [Requires approval] X
Can Statically Link To
License-A License-B License-C License-D
License-A X X
License-B X [Requires approval]
License-C X X
License-D [Requires approval] X
![Page 24: The Role of Legal Counsels in Focusing Compliance on Scaling and Execution](https://reader033.fdocuments.net/reader033/viewer/2022052823/5552ae9cb4c9052e568b4b90/html5/thumbnails/24.jpg)
24 © 2013 SAMSUNG Electronics Co.Open Source Group – Silicon Valley
5. Checklists
Establish a checklist for most milestones:- A checklist before approving/integrating incoming code into
your product’s source code repository - A checklist to ensure you fulfilled the obligations- A checklist for developers- A checklist for engineer managers- A checklist for compliance staff- Etc.
After regular use, checklists become a default
behavior.
![Page 25: The Role of Legal Counsels in Focusing Compliance on Scaling and Execution](https://reader033.fdocuments.net/reader033/viewer/2022052823/5552ae9cb4c9052e568b4b90/html5/thumbnails/25.jpg)
25 © 2013 SAMSUNG Electronics Co.Open Source Group – Silicon Valley
Checklists – Example
Checklist for use before posting code on the web site
(license obligation fulfillment):- All source code components have a corresponding compliance ticket- All compliance tickets have been approved by engineering and legal- All compliance tickets are clear from any sub-tasks attached to them- Notices for all of the software components have been sent to Documentation
team and included in product documentation (including written offer)- Legal has approved the written offer notice and overall compliance documen-
tation- Source code packages have been prepared and tested to compile on a stan-
dard development machine- Source code provided is complete and corresponds to the binaries in the prod-
uct
![Page 26: The Role of Legal Counsels in Focusing Compliance on Scaling and Execution](https://reader033.fdocuments.net/reader033/viewer/2022052823/5552ae9cb4c9052e568b4b90/html5/thumbnails/26.jpg)
26 © 2013 SAMSUNG Electronics Co.Open Source Group – Silicon Valley
Benefits
![Page 27: The Role of Legal Counsels in Focusing Compliance on Scaling and Execution](https://reader033.fdocuments.net/reader033/viewer/2022052823/5552ae9cb4c9052e568b4b90/html5/thumbnails/27.jpg)
27 © 2013 SAMSUNG Electronics Co.Open Source Group – Silicon Valley
Benefits to Providing Practical Legal Ad-vice
Easy access to commonly asked questions / use cases /
scenarios
Increase bandwidth of Legal Counsel supporting open
source
Fewer legal bottlenecks in enabling open source adoption
and usage
Documented open source legal practical guidelines, Do’s
and Don'ts
Minimize engineering frustration surrounding open source
legal stuff
![Page 28: The Role of Legal Counsels in Focusing Compliance on Scaling and Execution](https://reader033.fdocuments.net/reader033/viewer/2022052823/5552ae9cb4c9052e568b4b90/html5/thumbnails/28.jpg)
28 © 2013 SAMSUNG Electronics Co.Open Source Group – Silicon Valley
Benefits to Providing Practical Legal Ad-vice
Members of the Legal Staff supporting open source activi-
ties can act as key enablers to the adoption and use of
open source software.
Focusing on practical open source legal advice.
![Page 29: The Role of Legal Counsels in Focusing Compliance on Scaling and Execution](https://reader033.fdocuments.net/reader033/viewer/2022052823/5552ae9cb4c9052e568b4b90/html5/thumbnails/29.jpg)
Thank you.
29 © 2013 SAMSUNG Electronics Co.Open Source Group – Silicon Valley
Ibrahim Haddad, Ph.D.Head of Open Source Group
Samsung Research America (Silicon Valley) [email protected] | @IbrahimAtLinux