Welcome!

Linux Containers Authors: Yeshim Deniz, Carmen Gonzalez, Liz McMillan, Zakia Bouachraoui, Elizabeth White

Related Topics: Linux Containers

Linux Containers: Article

Book Review: Open Source Licensing: Software Freedom and Intellectual Property

Book Review: Open Source Licensing: Software Freedom and Intellectual Property

According to Larry Rosen, "One of the challenges to writing about licensing in a book not specifically written for licensing professionals is to make a very dull subject interesting."

A Complete and Thorough Book

Rosen has met that challenge in his exciting guide to the Open Source licensing zoo. As an extra fillip he offers a set of five Open Source Principles so clear and brief that the Open Source Initiative (OSI) would be well advised to adopt them, plus two new licenses intended to solve not only the weaknesses of some of the current Open Source licenses, but resolve the many problems that revolve around the Free Software Foundation's (FSF) GNU General Public License (GPL) and Lesser General Public License (LGPL).

This clear book spends 314 pages in detailed discussion of more legal issues than this review can touch on. The author has the advantage of having trained and worked as a programmer and so as a lawyer he's not flummoxed by complex technical issues. He's also uniquely qualified by his long tenure at the Open Source Initiative, where he served as general counsel and as executive director, participating in many discussions there on licensing and building a wealth of experience to mine for this book. Everyone involved at all with Open Source software should read the first three chapters of this book as background to understanding the larger issues, and the remainder of it should be mandatory for all people and firms actually producing Open Source software, whether as coders or managers.

The book approaches licenses in chronological fashion, showing early starts and subsequent improvements. To oversimplify, in the beginning, the BSD license imposed no limits on the licensee; the MIT, or X license, added clear copyright language; and the GPL required that code be shared. Subsequent licenses have added patent defense and warranties of code provenance. Over 15 years later we are faced with dozens of licenses and conflicting opinions (none of them judicial) about how software developers and firms are supposed to stitch together code to meet their terms.

The book is quite lucid since Rosen takes the reader through the basics such as the fact that different laws apply to the intellectual property (IP) of software and the to tangible copies of software, that copyright doesn't protect the ideas in software (patents do that), and that there's a difference between a (bare) license and a contract (containing a license). Along the way important points emerge: although a bare license (like the GPL) can be revoked because it's not a contract for which consideration has been received (typically a payment), the law would recognize that the user's dependence on the software substitutes for that consideration, so that in practical terms the license couldn't be revoked (p. 56).

More fascinating for Open Source developers is the discussion of joint works versus collective works: if developers agree among themselves (contract) to undertake a project, then as owners they can each license the entire joint work to others as they individually see fit; if there's no such contract, the work is a collective work (a collection of unmodified pieces), each of which is under its author's respective license. Most Open Source projects are joint works, and generally speaking Rosen sees no reason for the typical project to assign copyrights rather than retain them individually. In the case of a collective work, the collector is the author and can license and distribute it, but only if he has a distribution license from the authors of the constituent pieces.

Neither joint nor collective works are derivative works. A derivative work is a new work that's based on a pre-existing work. The author of a derivative work can license and distribute the derivative work provided he has a license for the pre-existing work that gives him the right to create a derivative work and distribute that derivative work. These distinctions are of crucial importance to Rosen's views on the Free Software Foundation's interpretation of the GPL.

The heart of his book, however, is Rosen's relentless categorization of licenses into types such as template licenses (Apache, BSD, MPL) that can be used by others simply by changing the name and the most important division, academic versus reciprocal licenses. Briefly, academic licenses originated at institutions of higher learning (Berkeley, MIT) and sought to provide the widest possible distribution for the software they cover; there are no real restrictions on its use, rewriting, and dissemination. Reciprocal licenses (most famously the GPL) require that anyone distributing the software offer the source code for the entire work as it's distributed, including all the changes. Rosen regards academic/reciprocal as the heart of the software freedom that is most likely to lead to rapid technological advance and increased productivity for everyone.

More Stories By Donald Rosenberg

Longer bio:


Donald K. Rosenberg is president of Stromian Technologies, a marketing consulting firm specializing in OEM software licensing and Open Source licensing and marketing issues. He is the author of Open Source: The Unauthorized White Papers, (Wiley), a book taking a business approach to Open Source software, now on the Web at ftp://ftp.novell.com/pub/forge/documents/Open%20Source:%20The%20Unauthorize
d%20White%20Papers/FrontMatter.html.
Don has twenty years of marketing experience and has worked with companies large and small in the U.S. and Europe, both in Open Source and
proprietary software licensing and marketing. Besides consulting on
these issues, Don has given talks about them at USENIX, ALS, Linux.SYS-CON.com (San Francisco, Frankfurt/M), Wizards of OS (Berlin), CeBIT (Istanbul), Comdex (Las Vegas, Basel), and in Taiwan and Slovenia. His column, Rosenberg's Corner, deals with Open Source and business issues.


Shorter bio:

Short bio:

Donald K. Rosenberg assists software companies with licensing and business/marketing strategies at Stromian Technologies and wrote Open Source: The Unauthorized White Papers, (Wiley), a book taking a business approach to Open Source software, now on the Web at ftp://ftp.novell.com/pub/forge/documents/Open%20Source:%20The%20Unauthorize
d%20White%20Papers/FrontMatter.html.

Comments (0)

Share your thoughts on this story.

Add your comment
You must be signed in to add a comment. Sign-in | Register

In accordance with our Comment Policy, we encourage comments that are on topic, relevant and to-the-point. We will remove comments that include profanity, personal attacks, racial slurs, threats of violence, or other inappropriate material that violates our Terms and Conditions, and will block users who make repeated violations. We ask all readers to expect diversity of opinion and to treat one another with dignity and respect.


IoT & Smart Cities Stories
Every organization is facing their own Digital Transformation as they attempt to stay ahead of the competition, or worse, just keep up. Each new opportunity, whether embracing machine learning, IoT, or a cloud migration, seems to bring new development, deployment, and management models. The results are more diverse and federated computing models than any time in our history.
At CloudEXPO Silicon Valley, June 24-26, 2019, Digital Transformation (DX) is a major focus with expanded DevOpsSUMMIT and FinTechEXPO programs within the DXWorldEXPO agenda. Successful transformation requires a laser focus on being data-driven and on using all the tools available that enable transformation if they plan to survive over the long term. A total of 88% of Fortune 500 companies from a generation ago are now out of business. Only 12% still survive. Similar percentages are found throug...
Dion Hinchcliffe is an internationally recognized digital expert, bestselling book author, frequent keynote speaker, analyst, futurist, and transformation expert based in Washington, DC. He is currently Chief Strategy Officer at the industry-leading digital strategy and online community solutions firm, 7Summits.
Digital Transformation is much more than a buzzword. The radical shift to digital mechanisms for almost every process is evident across all industries and verticals. This is often especially true in financial services, where the legacy environment is many times unable to keep up with the rapidly shifting demands of the consumer. The constant pressure to provide complete, omnichannel delivery of customer-facing solutions to meet both regulatory and customer demands is putting enormous pressure on...
IoT is rapidly becoming mainstream as more and more investments are made into the platforms and technology. As this movement continues to expand and gain momentum it creates a massive wall of noise that can be difficult to sift through. Unfortunately, this inevitably makes IoT less approachable for people to get started with and can hamper efforts to integrate this key technology into your own portfolio. There are so many connected products already in place today with many hundreds more on the h...
The standardization of container runtimes and images has sparked the creation of an almost overwhelming number of new open source projects that build on and otherwise work with these specifications. Of course, there's Kubernetes, which orchestrates and manages collections of containers. It was one of the first and best-known examples of projects that make containers truly useful for production use. However, more recently, the container ecosystem has truly exploded. A service mesh like Istio addr...
Digital Transformation: Preparing Cloud & IoT Security for the Age of Artificial Intelligence. As automation and artificial intelligence (AI) power solution development and delivery, many businesses need to build backend cloud capabilities. Well-poised organizations, marketing smart devices with AI and BlockChain capabilities prepare to refine compliance and regulatory capabilities in 2018. Volumes of health, financial, technical and privacy data, along with tightening compliance requirements by...
Charles Araujo is an industry analyst, internationally recognized authority on the Digital Enterprise and author of The Quantum Age of IT: Why Everything You Know About IT is About to Change. As Principal Analyst with Intellyx, he writes, speaks and advises organizations on how to navigate through this time of disruption. He is also the founder of The Institute for Digital Transformation and a sought after keynote speaker. He has been a regular contributor to both InformationWeek and CIO Insight...
Andrew Keys is Co-Founder of ConsenSys Enterprise. He comes to ConsenSys Enterprise with capital markets, technology and entrepreneurial experience. Previously, he worked for UBS investment bank in equities analysis. Later, he was responsible for the creation and distribution of life settlement products to hedge funds and investment banks. After, he co-founded a revenue cycle management company where he learned about Bitcoin and eventually Ethereal. Andrew's role at ConsenSys Enterprise is a mul...
To Really Work for Enterprises, MultiCloud Adoption Requires Far Better and Inclusive Cloud Monitoring and Cost Management … But How? Overwhelmingly, even as enterprises have adopted cloud computing and are expanding to multi-cloud computing, IT leaders remain concerned about how to monitor, manage and control costs across hybrid and multi-cloud deployments. It’s clear that traditional IT monitoring and management approaches, designed after all for on-premises data centers, are falling short in ...