Don't have an account yet? Sign up as a New User
Lost your password?
Welcome to ConsortiumInfo.org
Saturday, October 22 2016 @ 08:26 PM CDT
Sunday, March 09 2008 @ 05:45 AM CDT
Contributed by: Andy Updegrove
On February 29, about an hour after the OOXML Ballot Resolution Meeting closed, I posted this blog entry, based on information available at the time. Corrections were made over the next two days to take further information into account as it became available; those corrections are duly noted in the text. Due to the extent and energy of the debate that has erupted around the BRM, I turned that blog entry into an ongoing resource page, adding first-hand accounts of many delegates to the BRM, the views of selected non-attendees, the text of public statements and press releases by ISO/IEC JTC1, Ecma, various National Bodies and other interested parties, and more.
In order to make that material easier to use, I've now moved that material to this new entry, reorganized it, and added the Table of Contents immediately below (the original blog entry, as corrected, now stands alone at the original date of posting, with a forward link to this resource page). You can also view the many press articles that continue to be written as I add them to the News Picks column to the right, as well as hundreds of additional articles from the past several years about ODF and OOXML, by bookmarking . You can therefore stay current on further developments and statements relating to the BRM by bookmarking this blog entry.
My thanks to all of you that have pointed me to much of the data that appears below. Please continue to send me links to information as you find it or provide it, and I'll add it below. NOTE: you must click through to the full text of this entry for some of the Table of Contents links to work
Table of Contents
I. Updated Blog Entry - As posted on February 29
II. Comments to Blog Entry - Includes an extensive exchange with BRM Convenor Alex Brown
III. Daily Updates - Supplemental notes on the materials as added
IV. BRM Accounts by Delegates (interested and neutral) - Blog postings and interviews of delegates with their details and perspectives
V. BRM Commentary by Others - Both interested and neutral; for press accounts, see the ODF/OOXML News folder
VI. Public Statements and Press Releases - ISO/IEC JTC1, Ecma, National Bodies, and more
Friday, February 29 2008 @ 05:53 AM CST
Contributed by: Andy Updegrove
I have now created a very extensive, indexed BRM Resource Page to hold the many links, press releases, delegate statements and other material that were originally found here. You can find that extra materials here.
A rather incredible week in Geneva has just ended, bringing to a close the Herculean task assumed by the over 100 delegates from 32 countries that attended the BRM. That challenge, of course, was how to productively resolve the more than 1,100 comments (after elimination of duplicates) registered by the 87 National Bodies that voted last summer with respect to a specification that itself exceeded 6,000 pages.
I have spent the week in Geneva, and have spoken with many delegates from many delegations on a daily basis. Each believed that a body that purports to issue "global open standards" should not impose an obligation of secrecy on how the standards that people must live with are approved on their behalf. It would be fair to say that, notwithstanding all of the charges and counter charges that have been made leading up to the BRM regarding how National Body votes were taken last summer, how delegations have been selected, and how they have been instructed to act and vote at the BRM, there has been a good faith effort by all to try to achieve a successful result. The same appears to have held true within delegations, even those that contained representatives of the most opposed parties.
There are two ways in which you may hear the results of the BRM summarized by those that issue statements and press releases in the days to come. Perhaps inevitably, they are diametrically opposed, as has so often happened in the ODF - OOXML saga to date. Those results are as follows:
98.4% of the OOXML Proposed Dispositions were approved by a three to two majority at the BRM, validating OOXML
The OOXML Proposed Dispositions were overwhelmingly rejected by the delegations in attendance at the BRM, indicating the inability of OOXML to be adequately addressed within the "Fast Track" process
[Paragraph updated] In this blog entry, I will explain why the following is the best characterization, and help you read the various press releases and statements that may be made with the benefit of the appropriate context:
Only a very small percentage of the proposed dispositions were discussed in detail, amended and approved by the delegations in attendance at the BRM, indicating the inability of OOXML to be adequately addressed within the "Fast Track" process
Sunday, February 24 2008 @ 02:34 PM CST
Contributed by: Andy Updegrove
This rather long essay is in one sense a reply to the open letter recently released by Patrick Durusau, in which he suggested that it was time to acknowledge progress made and adopt OOXML. But it is also an explanation of why I have for the first time in my career become personally involved in supporting a standard. The reason is that I believe that we are at a watershed in public standards policy, and that there is much more at stake than ODF and OOXML. In this essay, I explain why I think we need to recognize the existence and vital importance of what I call “Civil ICT Standards,” and why more than simple technical compromises are needed to create them in order to protect our “Civil ICT Rights.”
As I write this entry, hundreds of people from around the world are converging on Geneva, Switzerland. 120 will meet behind closed doors to hold the final collaborative discussions that will determine whether OOXML will become an ISO/IEC standard. When their work is complete, not everyone will be pleased with the changes agreed upon, but all will acknowledge that the specification that eventually emerges will be much improved from the version that was originally submitted to Ecma two years ago.
Most will also agree that Microsoft’s customers and independent software vendors (ISVs) will be far better off with OOXML publicly available than they would if Microsoft had not offered the specification up at all.
To reach this final draft, hundreds of standards professionals in many nations have spent a great deal of time and effort, including many at Microsoft. And while Microsoft, working with Ecma, has not agreed to all of the changes that have been requested, my impression is that it has agreed to many that will, if implemented by Microsoft, require a substantial amount of work and technical compromise on its part.
Thursday, February 21 2008 @ 09:28 AM CST
Contributed by: Andy Updegrove
Microsoft has just made a major announcement relating to its core products and involving the degree and manner in which it will make the details of those products available to developers. The importance of the announcement was underlined by those that were brought together for the press event at which the decisions were announced: chief executive Steve Ballmer, chief software architect Ray Ozzie, senior vice president of the server and tools business Bob Muglia, and Brad Smith, the senior vice president and general counsel for legal and corporate affairs.
At first glance, this appears to be an important decision by Microsoft indicating a greater willingness to be both open and cooperative. There are a number of promises in the announcement that I like, including the commitment to publish a great deal of material on the Web, as well as the freedom that will be offered to developers to take certain actions without the necessity of first obtaining a license. However, I have not had the opportunity to read any of the supporting details, and those details will be extremely significant, especially as regards the open source community, where subtle differences in legal terms can permit use under some open source licenses, but not others.
Similarly, with respect to ODF, it will be important to see what kind of plug ins are made available, how they may be deployed, and also how effective (or ineffective) those translators may be. If they are not easy for individual Office users to install, or if their results are less than satisfactory, then this promise will sound hopeful but deliver little. I am disappointed that the press release does not, as I read it, indicate that Microsoft will ship Office with a "save to" ODF option already installed. This means that ODF will continue to be virtually the only important document format that Office will not support "out of the box."
Friday, February 08 2008 @ 08:25 AM CST
Contributed by: Andy Updegrove
The Wall Street Journal reported this morning that EU regulators have announced a third investigation into Microsoft's conduct on the desktop. This latest action demonstrates that while the EU has settled the case against Microsoft that ran for almost a decade, it remains as suspicious as ever regarding the software vendor's conduct, notwithstanding Microsoft's less combative stance in recent years. The news can be found in a story reported by Charles Forelle bylined in Brussells this morning.
According to the Journal, the investigation will focus on whether Microsoft "violated antitrust laws during a struggle last year to ratify its Office software file format as an international standard." The article also says that the regulators are "stepping up scrutiny of the issue." The Journal cites the following as the type of activity it will look into:
In the months and weeks leading up to [last summer's vote on OOXML], Microsoft resellers and other allies joined standards bodies en masse -- helping swell the Italian group, for instance, from a half-dozen members to 85. Opponents said Microsoft stacked committees. People familiar with the matter say EU regulators are now questioning whether Microsoft's actions were illegal. Microsoft said at the time that any committee expansion had the effect of making more voices heard; it also said rival International Business Machines Corp. mobilized on the other side of the vote.
A Microsoft spokesman referred to a statement issued last month, in which the company said it would "cooperate fully" with the EU regulator and was "committed to ensuring" the company is in compliance with EU law.
Wednesday, January 30 2008 @ 06:21 AM CST
Contributed by: Andy Updegrove
As many of you are aware, Alex Brown will be the "Convenor" of the OOXML Ballot Resolution Meeting (BRM) that will run from February 25 through 29 in Geneva, Switzerland. Alex has a variety of unenviable tasks, including:
Trying to interpret various standing Directives and other ISO/IEC JTC1 rules and practices that were created for what might be described as kinder, gentler times (not to mention for shorter specifications).
Figuring out how to process c. 1,000 comments (after elimination of duplicates) during a 35 hour meeting week, without the currently contemplated possibility of an extension.
Herding 120 cats, some of which will have strong opinions on individual points, others of which will have alternating suggestions on how to resolve a given point, and many of whom may be just plain bewildered, due to the lack of time to be fully prepared.
For better or worse, the rules that Alex will be interpreting and applying are not as comprehensive, and certainly not as detailed, as the situation might demand to put everyone on exactly the same page regarding what should (or at least could) be done at many points in time. As a result, knowing how Alex's thoughts are shaping up is both interesting and important. To his credit, he has been generous about sharing those thoughts, and often how he arrived at them, at his blog, which can be found here.
While I've often linked to Alex's blog and have had a permanent link in the "Blogs I Read" category for some time, I'd like to point to Alex's latest entry, which covers several important points that others have recently blogged on. In many cases, Alex comes out differently than some others that have stated firm opinions, and since Alex has the gavel, his opinion will be the one that counts.
Thursday, January 17 2008 @ 01:03 PM CST
Contributed by: Andy Updegrove
If you're reading this blog entry, you've probably been following the battle between ODF and OOXML. If so, you may be thinking of that conflict as a classic standards war, but in fact, it goes much deeper than that label would suggest. What is happening between the proponents of ODF and OOXML is only a skirmish in a bigger battle that involves a fundamental reordering of forces, ideologies, stakeholders, and economics at the interface of society and information technology.
Today, open source software is challenging proprietary models, hundreds of millions of people in emerging societies are choosing their first computer platforms from a range of alternatives, major vendors are converting from product to service strategies, and software as a service is finally coming into its own - to mention only a few of the many forces that are transforming the realities that ruled the IT marketplace for decades. When the dust settles, the alignments and identities of the Great Powers of the IT world will be as different as were the Great Powers of the world at the end of the First World War.
It is in this light that the ODF vs. OOXML struggle should really be seen, and for this reason I've dedicated the latest issue of Standards Today to exploring these added dimensions on the eve of the OOXML Ballot Resolution Meeting that will begin on February 25 in Geneva, Switzerland.
Monday, January 14 2008 @ 10:50 AM CST
Contributed by: Andy Updegrove
Regulators in the EU today announced that they are opening two new investigations against Microsoft, this time focusing not on peripheral functionalities like media players, but on the core of Microsoft's business: its operating and office suite software. The investigations are in response to a recent complaint filed by Norway browser developer Opera Software ASA and a 2006 complaint brought by the European Committee for Interoperable Systems (ECIS), which includes Microsoft rivals IBM, Nokia, Sun, RealNetworks and Oracle among its members.
Both investigations focus on the benefits that Microsoft gains by combining features, such as search and Windows Live, into its operating system. But the investigation sparked by the Opera complaint also includes some novel and interesting features, based upon Opera's contention that Microsoft's failure to conform Internet Explorer to prevailing open standards puts its competitors at a disadvantage (Opera also asks that either IE not be bundled with Windows, or that other browsers, including its own, should be included as well, with no browser being preset as a default).
The investigations will also look into whether Microsoft has failed to adequately open OOXML, or to take adequate measures to ensure that Office is "sufficiently interoperable" with competing products. This would seem to indicate that Microsoft's strategy of offering OOXML to Ecma, and then ISO/IEC JTC1, may fail to achieve its objective, whether or not OOXML is finally approved as a global standard.
Thursday, January 03 2008 @ 01:43 PM CST
Contributed by: Andy Updegrove
It's not often I find myself at a loss for words when I read something, but this is one of those times.
Or perhaps it would be more accurate to say that it isn't really necessary for me to add any words to the following news, other than to characterize them with a Latin phrase lawyers use: Res ipse loquitor, which translates as "the thing speaks for itself." I'll give one clue, though: I've added this blog post to the "ODF and OOXML" folder. That's "OOXML" as in "the world must have this standard so that our customers can open the billions of documents that have already been created in older versions of" a certain office productivity suite.
So without further ado, here's the news, along with what a few other people have had to say about it [Update: see also the comments that readers have added below interpreting the original Microsoft information]:
Thursday, December 13 2007 @ 04:55 AM CST
Contributed by: Andy Updegrove
As the date for the February BRM (Ballot Resolution Meeting) on ISO/IEC JTC1 DIS 29500 (a/k/a Ecma 376, a/k/a Microsoft OOXML) approaches, more and more attention is being paid to how Ecma will propose the disposition of the comments submitted during the general voting period. This level of heightened interest is legitimately urgent, due to both the great number of the comments that need to be resolved, even after elimination of duplicates, as well because of the late date upon which the proposed resolutions will be made public (the deadline, if memory serves, is January 19, while the BRM will commence its deliberations on February 25 of next year).
The words are therefore flying fast and furious at the many blogs covering this question, and tempers are rising in the comments appended to those of bloggers that have a direct interest in the outcome. A particularly contentious issue has been whether Ecma is trying to make it as easy as possible, or is trying to make it as difficult as possible while still scoring PR points, for interested parties to view proposed dispositions of comments, and whether it does, or does not, have the latitude under ISO rules to be more transparent. The fairly opaque, and sometimes contradictory nature of those rules, has not made the debate any easier, and gives rise to the possibility of confusion, at best, and serious mistakes, at worst, as Pamela Jones pointed out at Groklaw this morning.
The result is that there will be very little real data available to the general public until Ecma opens the curtains on January 19. And the import of what little data does become available is usually the subject of instant disagreement.
With that as prelude, I've pasted in the text of a press release at the end of this blog entry that Ecma issued yesterday. The release gives only a peek at some of the issues addressed in the new dispositions, giving varying degrees of detail on each area highlighted - but that's more than we've had to go on so far. Here is my summary of the press release and its significance, when viewed in the context of other reliable, available information:
Quote of the Day
“[O]occasional lulls in momentum are not uncommon
-Marcus Lange, VP of Apache OpenOffice, on the occasion of the first AOO release in some time See all Quotes
Latest NewsStudy: ‘Open source coders more aware of security’Gijs HilleniusEU Joinup
October 19, 2016 - Developers of open source software are generally more aware of code security issues than developers working for the European institutions, according to a study conducted on behalf of the European Commission and European Parliament. Developers working for the European institutions have more tools available for management and testing of code security, but using them is not yet standard practice.
Open source developers should have more testing environments, and should perform more security testing, the study recommends....To compare code security methods used by open source communities and software development projects in the European institutions, the study looks at ten segments commonly found in software development, such as project management, release management, software testing, and incident management. For each segment, the report lists conclusions and recommendations. For example: project management is more efficient at the European institutions, and the study recommends that, if possible, free software groups improve in this area.
To shore up software security, the authors suggest that the European institutions and free software groups standardise their security definitions and that both use standard authentication mechanisms.... ...Full Story
ETSI releases first SDN software stack as open source
EU Joinup October 18, 2016 - [Last] week, standardisation organisation ETSI published OSM Release ONE, an open-source software stack to implement Software-Defined Networking (SDN). SDN, or network virtualisation, brings the management of computer networks to a higher level by abstracting the physical infrastructure. This allows network administrators to manage their networks in a more flexible, or even a fully automated, dynamic way.
The OSM software was developed by ETSI's Management and Orchestration (MANO) group in close alignment with the Network Functions Virtualisation (NFV) Industry Specification Group, in which industry and ETSI collaborate on standards for SDN.
The OSM community aims to deliver a production-quality open-source MANO stack that meets the requirements of commercial NFV networks. According to ETSI, the platform has been tested and documented to allow rapid installation in operator labs. The OSM group is currently building a network of remote labs connected over a virtual network to test the compatibility and interoperability of multiple types of infrastructures. ...Full Story
France to develop a toolbox for Open Government
EU Joinup October 17, 2016 - Etalab, the French government agency in charge of Open Data and Open Government, and the French authorities are currently working, in collaboration with other OGP members, on an Open Government toolkit....Etalab said that the toolbox should include Open Data portals, forums, tools to assess the implementation of commitments drafted in the Action Plan and some civic tech. A free public consultation platform will also developed to be part of the toolbox,... ...Full Story
IBM, Microsoft, Oracle beware: Russia wants open source, sees you as security risk
ZDNet October 14, 2016 - Russia is drafting a new law requiring Russian government agencies to give preference to open source and to block US software from computer systems, citing security concerns.
Just weeks after Moscow committed to removing Microsoft Outlook and Exchange on 600,000 systems under orders from Russian president Vladimir Putin, the nation's lower house, the State Duma, is drafting a bill to make it harder for agencies even to buy Russian software products that are based on foreign-made proprietary middleware and programming frameworks.
The bill marks Russia's latest attempt at substituting imported software with local products, but casts a wider net than existing restrictions on IT procurement by agencies and state-run enterprises.
If passed, the law will require local agencies to give preference to open-source software and justify any purchases of proprietary software. As reported by Russian news site, Kommersant, the Duma views products based on closed-source software as costly and unsafe to public IT infrastructure.... ...Full Story
The Apache OpenOffice Project Announces Apache® OpenOffice™ v4.1.3
Apache Foundation October 13, 2016 - Apache OpenOffice,...announced today Apache® OpenOffice™ v4.1.3, now available in 41 languages on Windows and OS X...."As an Open Source project led by an all-volunteer community, occasional lulls in momentum are not uncommon," said Marcus Lange, Vice President of Apache OpenOffice. "Such was the case with OpenOffice until recently. We wanted to change this, starting with a new bugfix release."Apache OpenOffice 4.1.3 features include:
- Key security vulnerability fixes;
- Support for new language dictionaries;
- Numerous bug fixes, including installer and database support on Mac OS X; and
- Enhancements to the build tools (for developers)
"This release symbolizes a resurgence in the project," said Patricia Shanahan, Release Manager for Apache OpenOffice 4.1.3. "We are proud to continue development of one of the most visible and widely used Apache projects."... ...Full Story
NFC Forum Technical Specifications Improve RF Communication and NFC Tag Interoperability with NFC Devices
NFC Forum October 12, 2016 - The NFC Forum announced today the availability of one adopted and four candidate technical specifications, following approval by the Board of Directors. The specifications are available on the NFC Forum website. Formerly a candidate specification, the Analog 2.0 Technical Specification delivers new capabilities that support improved RF communication to ensure interoperability between Near Field Communication (NFC) devices and existing RF infrastructure and cards based on the ISO/IEC 14443 and ISO/IEC 18092 standards.
The NFC Forum Type 1-4 Tag Candidate Specifications, currently open for industry comment, allow for enhanced communications between an NFC-enabled device and different existing tag hardware.... ...Full Story
G7 sets common cyber-security guidelines for financial sector
Reuters October 11, 2016 - The Group of Seven industrial powers on Tuesday said they had agreed on guidelines for protecting the global financial sector from cyber attacks following a series of cross-border bank thefts by hackers.... ...Full Story
21 Open Source Projects for IoT
Linux.com September 30, 2016 - The Internet of Things market is fragmented, amorphous, and continually changing, and its very nature requires more than the usual attention to interoperability. It’s not surprising then, that open source has done quite well here -- customers are hesitant to bet their IoT future on a proprietary platform that may fade or become difficult to customize and interconnect.
In this second entry in a four-part series about open source IoT, I have compiled a guide to major open source software projects, focusing on open source tech for home and industrial automation. Next week, I’ll cover hardware projects -- from smart home hubs to IoT-focused hacker boards -- and in the final part of the series, I’ll look at distros and the future of IoT.
The list of 21 projects below includes two major Linux Foundation hosted projects -- AllSeen (AllJoyn) and the OCF (IoTivity) -- and many more end-to-end frameworks that link IoT sensor endpoints with gateways and cloud services. I have also included a smattering of smaller projects that address particular segments of the IoT ecosystem. We could list more, but it’s increasingly difficult to determine the difference between IoT software and just plain software. From the embedded world to the cloud, more and more projects have an IoT story to tell.... ...Full Story
Thou shalt not kill: Official guidelines to keep humans safe from robots are published by standards authority
DailyMail.com September 29, 2016 - The science fiction author Isaac Asimov first proposed the 'Three Laws of Robotics' in a short story published in 1942 as a way of ensuring the machines would not rise up to overthrow humanity.
But with robots now starting to appear in people's homes and artificial intelligence developing, a group of experts have drawn up a new list of rules to protect humanity from their creations.
The British Standards Institution, which develops technical and quality guidelines for goods sold in the UK and issues the famous Kitemark certificate, has drawn up a new standard for robots.... ...Full Story
New, stronger crypto standard lacks backward compatibility
FedScoop September 28, 2016 - The Internet Engineering Task Force is on the verge of approving a new standard for encrypted internet traffic that will make the web a safer place to shop, bank and browse — but it could also break a lot of stuff for people who don't update their browsers.
Transport Layer Security, or TLS, is an encryption protocol that works with web browsers. It's the math, and the shared standards, that underlie the green padlock users see — the symbol which gives users the confidence that they are connected to the right site and is private enough to share personal or financial data.
TLS supersedes SSL, or Secure Sockets Layer — a protocol dating back to 1995 that has proven to be thoroughly broken. But the latest TLS version was finalized in 2008 and in recent years has been the subject of many high profile attacks and newly discovered bugs...."There's no timeline" for the IETF working group to finish drafting the standard, task force spokesman Greg Wood told FedScoop. The 15th draft was published last month.....Crypto experts agree 1.3 will be faster and much more secure. Older versions of TLS typically require at least three exchanges between the server hosting web content and the browser viewing it before any actual traffic can move. This is known as 3-RTT, for Round Trip Time, and contributes to the latency that sometimes plague encrypted sites.
The lower the RTT, the faster the web connection. TLS 1.3 aims for a maximum of 1-RTT, according to engineers.However, one of the ways TLS 1.3 is being made more secure is to eliminate what engineers call backwards compatibility — the ability of websites using the new standard to be viewed with outdated browsers....
Backwards compatibility is at the root of many vulnerabilities in earlier versions of TLS — like the POODLE and FREAK attacks.... ...Full Story