Since May 16, 2019, standards setting organizations (SSOs) with Huawei or any of 68 named Huawei affiliates as a member have been in turmoil. That was the day the Bureau of Industry and Security (BIS) of the Department of Commerce put Huawei and those affiliates (collectively, “Huawei,” for convenience) on its “Entity List,” thereby subjecting any US person or entity that exports or otherwise discloses certain non-public technical information, software and materials to Huawei to penalties under the Export Administration Regulations (EAR). These penalties can potentially exceed $1 million and include imprisonment.
Yesterday, 26 SSOs, including many of the most important standards developers in the world, came together to deliver a letter to the US Department of Commerce. That letter stresses the essential role that standards play in the modern world, and requests that the Department make “a clear statement that development of open enrollment, consensus-based standards or technical specifications as conducted by consortia” is exempt from the restrictions under the EAR that have led to the concern. The full text of that letter, and the signatories, appear at the end of this blog entry, and can also be found here.
New U.S. sanctions against Huawei in the escalating U.S. – China trade war have thrown another wrench into the gears of global commerce. But how do these sanctions affect standards organizations and open source development? The high level answer is that the impact will be significant for most standards organizations, and negligible for most open source projects. The major differentiator will be the degree of transparency of the organization in question.
The details, and the answer for any given organization, however are much more complicated, and the political landscape remains dynamic and subject to change.
Once upon a time we lived in a society that was not only completely analog but infinitely simpler. A time when it seemed the physical world could be understood and described, perhaps even tamed, purely through the application of rational thought. Contemporaries dubbed that era the Age of Enlightenment and looked forward to the wonders that this brave new world would bring. This week, one of the last icons of that heady time was dethroned and retired to a museum in Paris.
I am speaking, of course, about the kilogram, the last of the seven International System of Units measures to be represented by a physical object rather than an “invariant constant of nature.” But where did it come from? And why, after two hundred twenty years, has it been replaced?
Everything changes over time, from the constitutions of nations to political theories. Should the Open Source Software Definition be any different?
Earlier this week the Board of Directors of the Open Source Initiative issued an Affirmation of the Open Source Definition, inviting others to endorse the same position. The stated purpose of the release was to underline the importance of maintaining the open source software (OSS) definition in response to what the directors see as efforts to “undermine the integrity of open source.” Certainly, that definition has stood the test of time, and OSI has ably served as the faithful custodian of the definition of what can and cannot be referred to as OSS.
That said, while well-intentioned, the statement goes too far. It also suggests that the directors would do well to reflect on what their true role as custodians of the OSS definition should be.
Yesterday, Microsoft announced it was pledging 60,000 patents under the Open Invention Network (OIN) license. While the move was historic, it was not surprising. Instead, it marks a logical culmination of a path the software giant tentatively embarked on as much as a decade ago. That evolution gained significant momentum accelerated with the departure of Steve Ballmer, and accelerated yet again as the success of the Linux distributed development model was replicated across more on more projects, covering technologies as varied as cloud computing, virtualization, and blockchains.
On the surface, the significance of Microsoft's joining OIN lies with its agreeing to the terms of the OIN license. But in joining OIN, Microsoft may in fact be acknowledging the power of a far older social force: the community taboo.
By Ashley Lipman
Many people have heard of Kubernetes, but don’t know when or where to use it or even what it’s functionality is. Docker users may be more familiar with the program, but still unsure how to make that transition into using Kubernetes.
In this article, we’ll take a beginner’s approach to what Kubernetes is and how to start using it. This information will give you a high-level overview of the program and highlight some key considerations.
Almost nothing inspires a spirited discussion among the open source faithful as much as introducing a new open source license, or a major change in an existing license’s terms. In the case of version 3 of the GPL, the update process took years and involved dozens of lawyers in addition to community members. So, it’s no surprise that the pot is already boiling over something called the “Commons Clause.” How energetically? Well, one blog entry posted yesterday was titled The Commons Clause Will Destroy Open Source. The spark that turned up the heat was the announcement the same day by RedisLabs that it was adopting the license language.
The wire services lit up yesterday with news that six of the largest tech companies in the world had issued a statement in support of interoperability in healthcare at a developer conference. It’s a righteous goal, to be sure. In an interoperable healthcare world, anyone’s entire, life-long health record could be accessed anywhere, anytime, by anyone who was giving you care, from your primary physician to an emergency responder. Such a virtuous goal, in fact, that everyone, including the US government, has been trying to achieve it – without success – for over a decade. Will yesterday’s news bring us any closer to that goal?
First, the good news: last week, Google, Microsoft, Twitter and Facebook announced the Data Transfer Project, inviting other data custodians to join as well. DTP is an initiative that will create the open source software necessary to allow your personal information, pictures, email, etc. to be transferred directly from one vendor’s platform to another, and in encrypted form at that. This would be a dramatic improvement from the current situation where, at best, a user can download data from one platform and then try and figure out how to upload it to another, assuming that’s possible at all.
So what’s the bad news, and what does a hammer have to do with it?
As old readers will know and new ones can tell from the left column, one of the things I do besides lawyering is writing satirical, political cybersecurity thrillers - four to date, with a fifth out within a couple of months. Recently, Tantor Media offered me a contract to bring out the first three titles in audio. Tantor is an imprint of the largest publisher of audiobooks in the world, and I was delighted to say yes. Now the first title, The Alexandria Project, a Tale of Treachery and Technology, is available at Audible, Amazon, and everywhere else audiobooks are sold.