Slashdot Mirror

← Back to Stories (view on slashdot.org)

Perens Talks About Open Source Risk Management

Posted by Hemos on from the more-fun-then-roulette dept.

Big Sav writes "Here is a quick but good interview with Bruce Perens. It also raises the topic of indemnification vis a vis the SCO court case " Interesting interview - talks about Peren's new Open Source Risk Management company.

28 of 82 comments (clear)

  1. Surprised by andy666 · · Score: 2, Interesting

    I am surprised that he didn't discuss the work of Jonathan Smith at U of Penn.

  2. Self-promotion by lukewarmfusion · · Score: 4, Interesting

    Not that I can really blame him, but this interview is simply a promotion of his new OSRM company. Like posting an interview with your favorite movie star (who spend the entire time plugging his or her new film). It just doesn't seem like "news" as much as it is a commercial.

    1. Re:Self-promotion by Kegster · · Score: 4, Informative

      Yeah, Its a bit of a standard plug tour. Though he didn't say anything particularly contraversial in this article, unlike in the one he did for computerworld, with its "if linux gets too commercial the developpers will throw their toys out of the pram and do a Cartman"

    2. Re:Self-promotion by lukewarmfusion · · Score: 4, Insightful

      Note that I started my post with "I can't blame him" - Perens is doing what I would do in his place... but is it news for Slashdot?

    3. Re:Self-promotion by Kegster · · Score: 2, Informative

      Ok, I paraphrased slightly, so sue me ;)

      What he says does basically amount to a Damocles Sword hanging over businesses selling Linux based solutions, make money, but not too much, else we'll walk away and find a new toy to play with. And Bruce, with ESR, are the business friendly Open Source activists.

      At least with RMS you know where you stand.

  3. erm... by mirko · · Score: 5, Insightful
    About the legal problems small users might face due to the SCO hype :
    With small users, I don't think there's a problem. I don't think they're visible enough.


    What if SCO choose to attack them like the ??AA went to war against p2p users ?
    Small users cannot afford lawyers, after all...
    --
    Trolling using another account since 2005.
    1. Re:erm... by baudilus · · Score: 4, Insightful

      Unless they go after users who register their software for support reasons (RedHat, Mandrake), I don't see this being a real possibility. Also, the RIAA sues people under the premise that they are "costing" them money by providing a way to get music for free, for which they would otherwise pay (a ridiculous as we all know this is). I don't think SCO could even find out who is using it, let alone be able to prove monetary damages of any amount. Even if a suit is successful, how could they prove how much money they "lost"? The legal process would cost more than it's worth.

  4. Is this a good thing? by gregarican · · Score: 4, Interesting

    To me it sounds as if the group Bruce is on the board of is trying to exploit or otherwise captalize on the FUD of SCO actually winning a lawsuit. Which probably won't happen. Kind of reminds me of start-up companies which were around for all of the Y2K madness back in 1999. The FUD helped fuel interest, which really exaggerated the real deal.

    Maybe Bruce should start selling underwear to Iraqi prisoners...

    1. Re:Is this a good thing? by pointbeing · · Score: 4, Interesting
      To me it sounds as if the group Bruce is on the board of is trying to exploit or otherwise captalize on the FUD of SCO actually winning a lawsuit.

      Agreed.

      They're not really offering a lot for the money anyway - on the kernel developer side they offer $25k of protection. IMO if someone was to actually *win* a lawsuit $25,000 would be just a drop in the bucket.

      Also, why would I give $100k to someone who doesn't know that at least in this context 'panel' isn't a proper noun? ;-)

      --
      we see things not as as they are, but as we are.
      -- anais nin
    2. Re:Is this a good thing? by m00nun1t · · Score: 2, Insightful

      Likely or not, it is a risk and could happen. Many companies are risk averse, and look for ways to mitigate risk. This company is providing a way for them to mitigate risk. Pretty much a straight insurance job, although the downside is that their business is really all around one issue, rather than the normal diversified portfolio insurance companies have (betting that not all 100,000 clients will crash their cars in the same year, but all will pay their premiums).

      --
      Read reviews of shopping cart software
  5. Necessary by Plaeroma · · Score: 4, Interesting

    For our less read posters http://dictionary.reference.com/search?q=indemnifi cation In a perfect world, this service wouldn't be necessary. But, you really can't expect companies to take even imagined risks. If this helps people get involved in OSS despite all the SCO FUD, then job well done.

  6. Bottom line is... by Otter · · Score: 4, Interesting

    ...the claimed TCO of Linux has just gone up by however much Getting Sued Over Linux insurance you decide you need. Perens claims he isn't taking advantage of FUD, and he may well not be -- but at least acknowledge that this represents a 180 degree change from "No one could possibly believe there's any legal risk associated with Linux use and anyone who says otherwise is a Microsoft spy!"

    --
    What I'm listening to now on Pandora...
  7. RTFM? by JCMay · · Score: 3, Informative
    Quoting Perens from the article:


    I want to be very careful about that, because OSRM is not capitalizing on FUD (fear, uncertainty, and doubt), OSRM is going around and talking about what the real risks and benefits are.
  8. What is risk? by Anonymous Coward · · Score: 5, Interesting
    Most people think that risk is "probability of bad outcome weighted by cost of bad outcome", or somthing like that. It's not, because in a market, "price" reflects all probabilities and weightings, i.e. price is the "expected value".

    Risk is properly measured by the variance in possible outcomes, the amount of "spread" around the expected value, and probability does not enter into that.

    Risk has a value because every extra dollar you add to your wealth is worth less to you than the one that came before. So, upward "wins" in the variance are worth less than downward "losses", i.e. you should be willing to pay to eliminate risk, to shrink your variance.

    So, the economic "risk" of the SCO lawsuit exists with regard to the spread in possible outcomes, and has nothing to do with their probabilities. The value of insurance to you is based on your economic activity and your risk aversion.

    Insurance will increase the spread of Linux, not decrease it.

    Perens is capitalizing on his name, not on the FUD, since the article doesn't reflect that he understands risk in detail.

  9. How ridiculous is their case, anyways? by 192939495969798999 · · Score: 3, Interesting

    It is actually pretty ridiculous of SCO to even have this court case. As an example, I cite my dad's run-in with the US-PTO upon trying to patent a piece of software many years ago: they rejected his claim, stating that "there will NEVER be patents on computer software." Maybe they meant there SHOULD never be patents on computer software... who knows. Once again, it would be nice to see what SCO actually claims they "own", and how they can prove that "fact".

    --
    stuff |
    1. Re:How ridiculous is their case, anyways? by Anonymous Coward · · Score: 2, Informative

      Once again, SCO are not suing over patents - they don't have any relevant ones. They are suing over contract breaches and putative copyright infringements (which look highly unlikely to succeed, I hasten to add). IBM's countersuit alleges SCO infringed IBM's patents.

  10. I did RTFA you insensitive clod! by gregarican · · Score: 4, Insightful

    That's a PR line. Lawspeak. It indeed is capitalizing on the FUD since any educated person in the technology industry knows that the SCO case doesn't have a leg to stand on. The only potential clients I can see are those who blindly fall for the FUD that SCO has perpetuated.

    Just like those consulting companies that were around in 1999 to ensure that no Y2K disaster was going to hit clients. I know some companies would go into people's homes and ensure they were Y2K-compliant. What a freakin' joke! Remember folks stockpiling food and readying themselves for living in bomb shelters? Of course it's an extreme comparison, but the basis is the same. Capitalizing on more ignorant folks' fears.

    1. Re:I did RTFA you insensitive clod! by Anonymous Coward · · Score: 2, Insightful

      The whole point is that it's not just the SCO case. What if somebody who DID have a case turned up? What if somebody successfully sued a Linux distributor for patent infringement? Just because SCO's case has more holes than a colander doesn't mean that no case in the future can ever succeed.

      Plus even if there is no case, it can still cost a lot in legal fees before resolution: how much have IBM already spent, with the case still ongoing?

    2. Re:I did RTFA you insensitive clod! by gregarican · · Score: 2, Insightful

      The last statement I personally am making about this story is that from a business standpoint they are putting all of their eggs in one basket. Clients will purchase insurance to alleviate legal fees of being taken to court over Open Source Software usage. If Bruce and the gang on the board of this company thought that SCO would take smaller companies to court en masse then they would be losing their shirts in selling this insurance and therefore it would be a bad business move.

      If Bruce "is a pretty smart guy" then I can't see him risking losing his shirt. It would be like a large hurricane like Andrew back in the early 1990's. If it was forecasted to strike South Florida in short order and a start-up company started selling homeowners insurance for just the specific coverage of storm damage and that's it I would think that it would be a losing proposition from a business point of view. Make sense??

  11. Comment removed by account_deleted · · Score: 4, Insightful

    Comment removed based on user account deletion

  12. Re:Extortion by Anonymous Coward · · Score: 4, Insightful

    MS has had these problems as well. At least one patent holder has threatened to sue end users over database technology in Access. I hate to break this to you the Wet Blanket of Proprietary Wisdom but this is a universal problem for business. It isn't unique to OSS.

    It seems that running proprietary software isn't a safe option either. I'd recommend going back to abacuses but someone probably has a patent on those as well.

  13. Re:Extortion by alex_tibbles · · Score: 2, Insightful

    Either I need indemnification, or I don't
    I think you misunderstand insurance. Either I am going to crash my car, or I am not going to crash my car. If I won't crash my car, then I don't need insurance. You know that's not how it works. I just don't _know_ if I are going to crash my car or not. If we knew who was going to crash their cars, we would prevent it!
    The point of insurance is that it spreads the cost of Bad Things (tm) over the whole population of people (and corporations) that are at risk of Bad Things, proportionately to the level of their risk.

    --
    Posters recognized by their sig,
  14. Peren's Outlook by Inhibit · · Score: 4, Insightful

    Having heard Bruce Peren's give a speech before and had a chance to hear some of his outlook on Linux and IP, he seems to have a fair handle on how it all works.

    From the interview it seems that it's an effort to provide some indemnity while making people aware of the possible IP/Copyright issues inherent in coding software in the USA (and probably Europe soon). They're offering a service to assess risk of malicious lawsuits and possible IP violation. Doesn't sound like spreading Fear, Uncertainty, *or* Doubt to me.

    --
    You're reading Slashdot. Of course you like Linux and pc hardware
  15. And you too by Bruce+Perens · · Score: 2, Funny

    Who are you, anyway? I probably didn't like you either.

    --
    Bruce Perens.
  16. Re:why bother RTFA? by Bruce+Perens · · Score: 2, Interesting

    And I'd answer, if anyone actually asked a question.

    --
    Bruce Perens.
  17. Re:why bother RTFA? by Bruce+Perens · · Score: 2, Interesting
    but instead some legal assistance in the case there is an IP problem with open source software. Is this correct? If so, why go that route? It seems to offer little tangible benefit other than the "FUD Protection" angle.

    It lets us establish a permanent legal team who work on a number of similar claims against Open Source. They'll be up to date on their research, etc. That sort of efficiency will save everyone money.

    Why not just pro-actively sell the legal assistance -- for example if a company wants to use OSS Project X, you would perform research and certify that the IP in Project X is "clean" and the project is freely redistributable.

    We're doing that too, but if you didn't know: you can never finish a patent search definitively. Regarding the copyright issue you point out, that is easier to deal with.

    Currently we have to work with insurance companies. We can't offer it ourselves yet.

    Bruce

    --
    Bruce Perens.
  18. Re:why bother RTFA? by Bruce+Perens · · Score: 2, Interesting
    Why am I liable for the misdeeds of another person?

    Well, you aren't. But proving that could be expensive. The problem is that the patent statute says that you can be prosecuted for various forms of infringement, including use. If you got to court, your first action would probably be to attempt to sever yourself from the case, for just the reasons you state. And it might work. But we need clearer law here, or at least good case law.

    I know that there are some cases I could win as a defendant, but I'd have to spend all I have to get there, and wouldn't get it back. Is that really winning?

    I have been thinking about non-Open-Source risk management as you suggest. But there are many entities that can claim expertise on "Software". We can offer a specialized expertise. Also, having focus is a very good thing for a start-up company. If you try to do everything, you fail at doing anything.

    To capitalize on SCO's claims, someone would have to believe them. If you look at any survey of the IT industry, you know that's not the case. And you should also know that I have worked very hard to knock down SCO and continue to do so. But it is the nature of Free Software that we do gain something from our enemies. If Microsoft hadn't been saying all of those bad things about us ("unamerican", forsooth), people in business wouldn't have been curious about what was scaring Microsoft, and would not have looked as closely at what we had to offer as they did.

    The best thing you can do when thinking about OSRM is to assume that SCO is gone (soon enough that'll be true) and consider what our role is when facing patent claims. There will be enough of them.

    Bruce

    --
    Bruce Perens.
  19. Re:why bother RTFA? by Bruce+Perens · · Score: 2, Interesting
    If you read my recent press (use news.google.com) you'll notice that I am doing anything but sell indemnity. The Robert Macmillan article especially makes that point.

    Regarding the FUD messages, we have gone very far out of our way not to amplify FUD and I seriously doubt that hearing of OSRM is turning any customer away.

    But there is something you can tell your customers. If we don't do more about software patents, especially patents in standards, a few years from now Linux won't be Free Software any longer. You'll have to buy a patent-licensed version at a steep mark-up from one of the commercial distributions. And the commercial distributions have been doing hardly anything to help is with the patent fight.

    Unfortunately, donating to FSF doesn't do much about legal defense. FSF has one legal counsel, who works pro-bono and happens to be off writing a book and other stuff this year so his availability to FSF is extremely limited. They have never built a legal team. And they have been entirely innefective regarding software patents for years, They called their anti-patent effort LPF - League for Programming Freedom, and it has been unstaffed for most of a decade.

    And unfortunately, the software companies that we compete with do view us as a consortium of large businesses out to kill them. They and their legal teams will treat us that way.

    Bruce

    --
    Bruce Perens.