OSI To Crack Down On "Open Source" Abusers

munchola sends us word that the Open Source Initiative is getting tough on any vendors who claim to be open source despite not actually using a license approved by the OSI. In his blog post, OSI president Michael Tiemann writes: "Enough is enough. Open Source has grown up. Now it is time for us to stand up. I believe that when we do, the vendors who ignore our norms will suddenly recognize that they really do need to make a choice: to label their software correctly and honestly, or to license it with an OSI-approved license that matches their open source label."

OSI forcing licenses?

[Lilo-x]

why should they force companies to stick to a license, isn't this just OSI nearing closer to the same type of control corporation impose on their software

if there is a such a thing as true OSI then why do we need licenses? open source = you can see the source I don't think the definition should have to apply any further than that if companies dont want to

Re:OSI forcing licenses?

[nomadic]

So, we thought we'd help you with the legal stuff.

But how are we sure that you're going to get it right?

Open Source License Monopoly...

[mulvane]

So my license I make up for the hell of it with my terms that still allows anyone to view and audit my code if not approved by OSI means I can't market open source? Even though my code is open? Am I missing something about the word open?

Re:Open Source License Monopoly...

[mulvane]

No..They are saying that if I don't allow redistribution as 1 example, my code is not open source. I totally disagree with that. I may not want my code used elsewhere. I open my code up for audit purposes only. That is Open Source in my book with the intent of what my license allows. OSI is saying NO, we created the Open Source Definition (OSD) and you license violates that. I guess I need to market a new term.... "Open Code" just to navigate the bastardization of there definition.

Re:Open Source License Monopoly...

[tomstdenis]

Telling people what to do/buy/support is not how you develop a "just society." Just because you think all software should be freely available with no renumeration for the creators doesn't mean everyone else does. And it doesn't mean that your position is always right. Get over yourself.

I like the idea of free software, but I'm not totally zealot to think that proprietary software is worthless.

For example, if I spend time to highly optimize an implementation of MPEG decoding, why should I give it out as free software? Just because you're too cheap to pay me for my efforts? Because the lovey-dovey thing to do is embrace "love, peace, free software?"

Ok, I gave it out for free, will you pay my rent and buy my groceries?

I'm against people abusing the terms "open source" to leverage the good will towards their non-open products. But given there is no regulating body, there isn't much you can do about it other than make stupid faces and post on slashdot.

Tom

Re:Is "Open Source" a registered trademark?

[morgan_greywolf]

Yes, but interestingly enough, not by OSI. OSI owns Open Source Initiative Approved License mark and the 'OSI certified' mark.

IANAL, but I don't think OSI has a leg to stand on here.

Open Source is a specific kind of software

[Bruce+Perens]

Open Source software has licensing that conforms to the Open Source Definition and in addition the source code must be available. It is not just anything you think of. Long ago, OSI decided to abandon registration of "Open Source" alone, in my opinion on bad advice from their then legal counsel. However, it's still a common law trademark. But regardless of its trademark status, the community should not tolerate just anything being called Open Source, or you will find Microsoft using it for stuff that includes no freedom to modify, etc.

Bruce

Re:Open Source is a specific kind of software

[Bruce+Perens]

It's not like OSI could ever stop MS from calling Vista open source

They could make it very clear that it was a lie, and I'd expect you and the rest of the community to help with that.

it would mean OSI has gained political power. Do you want that?

Well, I have political power. I just came back from helping the government of Italy with an Open Source bill, and am on my way to Norway where I regularly meet with their government committee on this, and I do similar stuff in the US and elsewhere. Do you want that? :-)
I am OK with OSI having the "political power" to police a brand. It's not as if we're giving them control over martial law. I would hate for Microsoft to be the only one with political power who has something to say about this issue.

Bruce

Re:Open Source is a specific kind of software

[Bruce+Perens]

I'm from Norway, you actually meet with our government on a regular basis? That's good news! I was not aware of that. Keep up the good work!

There is a technology committee of the government, and one of the members hosts me in his home several times a year and consults me via email at other times when I can contribute to what they are working on. Sometimes I go to Oslo and speak directly with ministers and their staffers. And I teach at HiA in Kristainsand in the summer. I'll be at their Grimstad campus in the morning, I'm at LHR waiting for a flight change. I take a a little credit for Norway having the most sane policies regarding these issues of any country I know, but of course many people work on it.

Bruce

Badgeware is the problem

[Bruce+Perens]

Badgeware, software that requires that you place a badge on your web site, is the problem. SugarCRM is one of the offenders.

In composing the Open Source Definition, my aim was that there would be NO legal burden upon users at all. A user should be able to put OSI Certified Open Source software on a computer and go, without reading the license. That's one reason the OSD prohibited the then-popular "Educational Use Only" provision. Requiring the user to perform something - like transmit an advertising badge - is similarly unacceptable because it would place a legal burden on the user.

In practice, issues like patents and even Sarbanes-Oxley create a legal load for some users, but that is not under our developer's control. We had a license back then that imposed an attribution-related legal load on distributors: the original Apache license required attribution in some advertising. It was awkward, there was no way to implement it automatically, and it would have presented a scaling problem if hundreds of authors required attribution in - for example - an operating system distribution's advertising. The community eventually convinced Apache to drop the advertising provision.

That old Apache license has obvious parallels to more current "badgeware" proposals, but badgeware isn't a new issue for Open Source. Almost a decade ago, I reviewed the first Zope license for SPI. Zope's original submission required a web badge. I convinced their investor, Hadar Pedhazur, to make that a nice request rather than a requirement. Most people honored the request. The GPL contained an attribution provision, and still does. OSD was written to fit GPL. But the burden of the GPL's requirement was only upon developers, and it was the minimum necessary amount of attribution to communicate the author identification and the fact that the user had rights.

A developer can be especially irked when someone else labels that developers work as his own. But protecting that developer's business and taking the commercial value out of such relabeling does not require attribution. It could be done using any share-and-share-alike (GPL-like) license that closes the ASP loophole. But it's still fair for a developer to want to be attributed. I think the minimal practical goals for attribution are:

1) The developer should be able to find it.
and
2) The developer should be able to show to others.

This does not mean that the developer should require others to blow his advertising horn. Some companies already use attribution that isn't visible unless you are looking for it - it's embedded in HTML comments. In contrast, the draft Affero flavor of GPL 3 closes the ASP loophole by implementing the minimal necessary requirement for a developer to preserve a visible message informing the user of their rights. The visibility is to implement a separate goal of FSF: that users appreciate their rights and learn to demand them. Should OSI approve this new Affero license, or should it ask that FSF - rather than demanding a direct channel to users, search for that information and present the result on its own sites?

Bruce

Re:Badgeware is the problem

[Aladrin]

Wow, check that out. GPLv3-licensed software is not 'Open Source'. Since it doesn't allow the use on devices with DRM/etc, it creates a legal burden every bit as much as 'badgeware' does.

More than just seeing

[Bruce+Perens]

open source = you can see the source

Sigh. I imagine you use some of this Open Source software sometimes. Please try to get your head around the fact that it would not be possible for such software to exist and for folks like you to benefit from it, unless it was developed. And it would not be developed without a developer community, and that community would not be able to do their work unless they had the right to modify and redistribute the software. Thus, Open Source must be more than just visible source code - it has to include the right to distribute and modify, and it also needs the right for you to use it. So, that's 4 things - source, use privilege, distribution privilege, modification privilege and there's a bit more. Years ago, I wrote down what was necessary for software to be Open Source, and OSI uses that Open Source Definition to classify licenses. It is not an arbitrary thing.

Bruce

Re:More than just seeing

[CowboyBob500]

Years ago, I wrote down what was necessary for software to be Open Source, and OSI uses that Open Source Definition to classify licenses. It is not an arbitrary thing.

Maybe I've missed something, but can you explain exactly where you and the OSI get the authority to define what the words "open source" mean?

Bob

Re:More than just seeing

[CowboyBob500]

Sorry, but I don't recognise yours or the OSIs authority in this matter. Also, I agree with the grandparent, open source to me means that the source code is available, nothing more, and nothing less. The term does not define that certain freedoms are available with the source code, indeed it cannot given that even under the OSI approved licenses those freedoms vary wildly. In essence, the only constant I see amongst even the official definition is that the code is available - therefore that is what the term means to me (and I assume most other people outside of the "community").

Bob

Re:More than just seeing

[joe+155]

Surely open source can still have a use, even if it doesn't contain the right to modify. For example if I really like some software and am happy with the way it works (and also don't have the technical knowledge to be able to add new features) then I'll be happy with it as it is; even if it is more static than you seem to want. What would be good to know is that it won't be installing a ton of crapware and key loggers onto my computer when I install it. If it is open source then we can be sure that it won't (so long as at least someone who "the community" (whoever that actually is) trusts has looked through it).

So open source as defined above would give an important and useful right, it would act as a strong bond of trust, and would allow people who have searched for bugs to submit them to the developers to seek changes... but the project would be centrally controlled.

I don't seem to see how Microsoft is winning if people expect to be sure that their programs are not acting in a traitorous way - when we all know Windows has been calling home for years. This is the very diversity that "open source" will need to finally win the battle

Re:Is "Open Source" a registered trademark?

[Russ+Nelson]

In hindsight, you are correct. We were wrong to listen to Larry's advice in this regard.

Re:Open Source phrase is public domain

[Russ+Nelson]

Well, that's a great legal theory, and it might have some weight with the court, but we established the trademark, and we promoted it, and you know what it means through our hard work. Now you're trying to take my work away from me? I don't think so. Open Source, when applied to software, means "software whose license complies with the Open Source Definition" as evinced by our listing of the license on our website.

If you don't like that, take it to a court and see how far you get.

Re:Is "Open Source" a registered trademark?

[Russ+Nelson]

One always hopes so, but the misunderstand of people here is rather depressing. It's as if your hard work and our hard work in promoting Open Source has vanished. We're like the scaffolding that created the arch. People look at the arch and say "Oh, how beautiful" and forget that somebody had to work hard to create it.

Excepting, of course, that the analogy breaks down because people are trying to disassemble the arch and take it home, only without the scaffolding, there's no way to put it back together again. Break "Open Source" and you'll let the proprietary software vendors call ANYTHING open source.

Interesting??!! Nice Try Clever Lad

[asphaltjesus]

The parent post is very manipulative to the point of sowing seeds of confusion. Hang on a minute while I adjust my tin foil hat....

why should they force companies to stick to a license
Because if they don't, it's very easy for an asshat abusing whatever the OSI wants to enforce to tell a Judge, "Your honor, they have never enforced anything, so I'm allowed to abuse it." I'm paraphrasing, but the point is the OSI *must* enforce or the courts will allow asshats to sodomize whatever the OSI is attempting to protect. Tivo's founders are a good example of asshats that have "stolen" code in a novel way. Look up tivoization on the wikipedia if you don't believe me.

isn't this just OSI nearing closer to the same type of control corporation impose on their software
Whipping out the "all authority sucks" and pasting it on the OSI is a special kind of very manipulative doublespeak.

The OSI encourages new ideas and services making them available to all and preserving intellectual freedom. The typical for-profit corporation is steadfastly opposed to those ideals and does everything they can to squelch Freedom.

I respectfully and wholeheartedly disagree.

Re:Is "Open Source" a registered trademark?

[Bruce+Perens]

Well, I suggest you not get too depressed about what you are reading here, because you have astroturfing from the badgeware camp, and the generally anti-Free-Software camp, and on top of that just plain ignorance. Remember that no age field is given on Slashdot postings, and this is not the community site we had in the 90's - it was morphed to a "Geek Culture" site to make more money by the admission of its own editors.

There are lots of folks who appreciate what we have done and understand it a hell of a lot better than you are seeing here. They are in government, and industry, and everywhere. I do more public speaking than you (I'm in Europe for that at the moment) and see a lot more of them face-to-face.

Bruce

I'm shocked by all the negativity

[psykocrime]

I'm really shocked at all the negative reaction to this announcement here. This is a *great* thing. It's ridiculous for people
to take advantage of the term "Open Source" to market their products, while shipping something that isn't actually Open Source. And yes, I understand that some people quibble over whether or not the OSI definition is *the* definition of Open Source or not... hell, I may have argued that point myself in the past. But pragmatically, the OSID is the closest thing we have to a universal definition of what it means to be open source, and it's a good definition.

Let's hail this move as a good thing, to help prevent confusion in the market. SugarCRM, etc. shouldn't be going around
calling their stuff Open Source when it's not. Let them use a different term like "Source Available" or "Smart Source" or "Elephantine Lipitrude" or something, whatever.

Re:Is "Open Source" a registered trademark?

[Bruce+Perens]

Well, I wasn't accusing you. I am convinced that you really hold your opinion. But I am also convinced that there are real astroturfers out there. Even my own employer once in a while has a "Please put digg points on this" message go out to its "everyone" list. And I have heard from PR agencies who sell the fact that they can put multiple comments on Slashdot.

Thanks

Bruce

Re:Is "Open Source" a registered trademark?

[eihab]

How about an addendum to the words "Open Source", maybe "OSI Approved Open Source Software" and possibly a seal.

This way companies or individuals that are interested in using open source software can ask the vendor "Is your 'Open Source' software OSI Approved?", If they get a yes and they're using a license that's incompatible with OSI, you can hunt them down and make them "pay" for their deception.

So, instead of promoting the words "Open Source", maybe promote OSI?

*Warning: Weak web programmer analogy coming up*
It'll make you kind of like the W3C, anyone can come up with a DTD and say their markup is valid, but it's not the same thing as saying W3C Valid (x)HTML v.xx.

I'm pretty sure you can get a trademark/copywhatsoever (IANAL) on "OSI Approved OSS", promote that as what "true/standardized" Open Source software is, and then you can have the legal ground to go after deceitful entities.

Just my 2 cents.