Discussion: Scalability Through Open Source Hygiene
333 | Fri 02 Aug 4:30 p.m.–5:15 p.m.
Presented by
-
Ria Farrell Schalnat works with the Open Program Office of Hewlett Packard Enterprise. This role combines her prior lives as a computer programmer, lawyer and adjunct professor specializing in intellectual property subjects including open source. She has guided initiatives in patent portfolio management, intellectual property due diligence for mergers and acquisitions, software licensing, workflow and process management.
Ria is served for two years as President of CincyIP, a local bar association dedicated to intellectual property education. She also served as an adjunct professor at the University of Cincinnati School of Law and University of Dayton School of Law on subjects including Patent Litigation, Cyberspace Law and Open Source Licensing. Within the Linux Foundation, her extracurricular activities include both the SPDX project and CHAOSS. Finally, she participates in ongoing CISA-hosted community discussions related to software bills of material (SBOMs).
Abstract
There are many processes within an organization dealing with open source including licensing reviews & compliance, export compliance, product security, contractual obligations, and sustainability. These operate against the backdrop of ongoing development in technology, case law and newer legal requirements such as the EO 14028 in the United States and the European Union’s Cyber Resiliency Act (EU-CRA). All of them depend on inventories to understand the scope of obligations, risks and opportunities. They also require simple, scalable runbooks to achieve the underlying goals. Come to this session for an interactive discussion on practices and how to leverage projects within the Linux Foundation to super-charge your company’s open source practices.
There are many processes within an organization dealing with open source including licensing reviews & compliance, export compliance, product security, contractual obligations, and sustainability. These operate against the backdrop of ongoing development in technology, case law and newer legal requirements such as the EO 14028 in the United States and the European Union’s Cyber Resiliency Act (EU-CRA). All of them depend on inventories to understand the scope of obligations, risks and opportunities. They also require simple, scalable runbooks to achieve the underlying goals. Come to this session for an interactive discussion on practices and how to leverage projects within the Linux Foundation to super-charge your company’s open source practices.