Global technology leader supports standardization in open source compliance to improve predictability and efficiency across supply chains
SAN FRANCISCO – February 6, 2019 — The OpenChain Project, which builds trust in open source by making open source license compliance simpler and more consistent, announced today that Microsoft Corp. has joined as a platinum member. This comes on the heels of several other large companies joining OpenChain last month including Uber, Google and Facebook. The only standard for open source compliance in the supply chain, OpenChain provides a specification as well as overarching processes, policies and training that companies need to be successful in managing open source license compliance so that it becomes more efficient, understandable and predictable for participants of the software supply chain.
Companies consume billions of lines of open source software through their supply chains as they build new products and services. One key challenge as code flows between companies is ensuring the relevant license requirements are met in a timely and effective manner. The OpenChain Project provides companies with a consistent way to address these challenges. It’s hard to overstate the importance of this work given open source is a critical input at every step in the supply chain, both in hardware and software.
By joining OpenChain, Microsoft will help create best practices and define standards for open source software compliance, so that its customers have even greater choice and opportunity to bridge Microsoft and other technologies together in heterogeneous environments. Conformance with the OpenChain Specification shows that an organization follows the key requirements of a quality open source compliance program, and builds trust between organizations in the supply chain. It makes procurement easier for purchasers and preferred status easier for suppliers.
“Trust is key to open source, and compliance with open source licenses is an important part of building that trust,” said David Rudin, Assistant General Counsel, Microsoft. “By joining the OpenChain Project, we look forward to working alongside the community to define compliance standards that help build confidence in the open source ecosystem and supply chain.”
“We’re thrilled that Microsoft has joined the project and welcome their expertise,” said Shane Coughlan, OpenChain General Manager. “Microsoft is a strong addition not only in terms of open source but also in standardization. Their membership provides great balance to our community of enterprise, cloud, automotive and silicon companies, allowing us to ensure the standard is suitable for any size company across any industry.”
As a platinum member, a representative from Microsoft will join the OpenChain Governing Board. Other platinum members of the OpenChain project include Adobe, ARM Holdings, Cisco, Comcast, Facebook, GitHub, Google, Harman International, Hitachi, Qualcomm, Siemens, Sony, Toshiba, Toyota, Uber and Western Digital.
- Get Started With OpenChain
- Read Microsoft’s blog on why they joined
- Online Self-Certification
- Companies With OpenChain Conformance Program
About the OpenChain Project
The OpenChain Project builds trust in open source by making open source license compliance simpler and more consistent. The OpenChain Specification defines a core set of requirements every quality compliance program must satisfy. The OpenChain Curriculum provides the educational foundation for open source processes and solutions, whilst meeting a key requirement of the OpenChain Specification. OpenChain Conformance allows organizations to display their adherence to these requirements. The result is that open source license compliance becomes more predictable, understandable and efficient for participants of the software supply chain.
About The Linux Foundation
The Linux Foundation is the organization of choice for the world’s top developers and companies to build ecosystems that accelerate open technology development and commercial adoption. Together with the worldwide open source community, it is solving the hardest technology problems by creating the largest shared technology investment in history. Founded in 2000, The Linux Foundation today provides tools, training and events to scale any open source project, which together deliver an economic impact not achievable by any one company. More information can be found at www.linuxfoundation.org.