Why Open APIs Fall Far Short of Open Source

itwbennett writes "451 Group analyst Jay Lyman opined in a LinuxInsider column that because of open APIs, 'non-open source software is often open enough.' Not so, says ITworld blogger Brian Proffitt. Sure, open APIs are an easy way for a small developer to 'plug into a big software ecosystem,' but it's a trap. 'If open APIs are the only connector to a software project, the destiny of that code lies solely in the hands of the owners,' says Proffitt. 'Which means that anyone connecting into the application will have to deal with the changes imposed from the top down.'"

Google

Google is an expert at this. Convincing people that their open apis are the same as open source. They have and will never opensource their revenue generating products. They themselves don't believe in the open source economic model.

Re:Google

[exomondo]

They have and will never opensource their revenue generating products.

Of course not, how are they going to make money otherwise?

They themselves don't believe in the open source economic model.

errr...Android? That's open source and generates revenue through their ad network.

Re:Google

[Beelzebud]

Unlike you, who has apparently never heard of something called "Android".

Re:Google

[MyLongNickName]

The OS isn't where they make their money off this product. Being the open source alternative gives them a good market position, but their money is made from selling the hardware and tying it into the other Google services. Think of the OS as the loss leader that gets you in their store.

Re:Google

[MyLongNickName]

You need to read the whole sentence. The OS isn't the revenue generating part of Android. The hardware is. The other Google services are. The open source OS is just the way they get their product (you) and their paying customer (also you but third parties who want your eyeballs) in the door.

Re:Google

[layer3switch]

That is because they have a positive IQ.

Is that what they say now days? "Positive IQ" bus? "Positive IQ" education? "Positive IQ" needs?

Re:Google

[exomondo]

You need to read the whole sentence. The OS isn't the revenue generating part of Android. The hardware is. The other Google services are. The open source OS is just the way they get their product (you) and their paying customer (also you but third parties who want your eyeballs) in the door.

You need to read the whole sentence:
That's open source and generates revenue through their ad network.
As you can see i noted the way in which the Android open source software is funded by a profit model that doesn't require the software to be closed, which is very much the open source economic model, which is what i replied to:
They themselves don't believe in the open source economic model.

Re:Google

[Gerzel]

Their top revenue generator is their adds and second indirectly their search engine. Neither of which I'd ever expect for them to open.

Re:Google

[SplashMyBandit]

> The OS isn't the revenue generating part of Android.
The OS isn't the *direct* revenue part of Android. People don't think they are paying for the OS. However, without the OS you would have hardware with nothing running on it. Just because they don't charge for the Linux or Java (customized versions of which compromise the marketing name, "Android") doesn't mean they don't have value to Google. The OS is very valuable to Google, without an OS they would not make money on this product. Please don't confuse not charging for something directly with not generating revenue from it.

Re:Google

[jellomizer]

Really every API you are stuck to the app that your interfacing with.
Yes you can adjust an open source app. But really are you going to maintain a fork for a minor to moderate change. For the most part you use the parents software API and you deal with it. If the upgrade breaks what you have your gonna choose to stay with the old version or upgrade and fix your code.
Really this is just a rant from open source zealots to exaggerate minor trade offs of the models of software.

Re:Google

[MyLongNickName]

It is funny. We agree on all the facts but disagree with the interpretation. I view it as the "loss leader", you view it as part of the whole. Perhaps we simply are viewing the two sides of the same coin. What I won't budge from, however, is that true to the OP, Google will not give away its crown jewels through open sourcing.

Re:Google

[tibit]

Google's revenue generating products consist of the service-providing application that runs on Google infrastructure: their data store, indexing, replication, load balancing, configuration/deployment, maintenance front-end, etc. Open sourcing a random Google service would be quite useless: without the infrastructure you couldn't even run the darn thing. You'd have to spend a lot of time implementing at least skeleton functionality of the various back-ends just to run it. And then it'd still be an unscalable hack that could serve thousands but that's it. So, even if Google did open source a couple of their services, it'd be useless code, but also the argument that it'd help out their competition is invalid: they'd need Google's hardware and software infrastructure to scale it for real-life use by the millions. Say, google open-sourcing gmail would not affect their revenue stream at all, but it sure would make people realize how much investment google has in their infrastructure. Because I'm pretty damn sure that gmail utilizes everything they've got in gmail, whether directly or indirectly: spam scanning, indexing, distributed and redundant datastore, whatever toolkits are used for the development of the front and back-end, authentication, context detection (for addresses, phone numbers, etc), pop, smtp and imap servers (likely their own), yada yada.

Re:Google

[MyLongNickName]

100% agreed. Call it a "loss leader' or the price of doing business, but the OS certainly is not their revenue generator. Amazing how many smart people don't understand how companies make their money.

Re:Google

[DangerOnTheRanger]

Android - at least all the code you get from Google - is under the Apache 2.0 License. That makes Android a fully open-source project, since the Apache License is an OSI-approved license (and quite a permissive one at that). So people can't (or shouldn't) complain about Android not being open-source; they should complain instead about carriers making proprietary extensions. Quick note: CyanogenMod - an open-source build of Android - comes bundled with its own open-source marketplace application.

Re:Google

[oakgrove]

It seems to have attracted a lot of attention from the closed source zealots so I guess it did its job.

Re:Google

[crutchy]

noice backpedal

Re:Google

[crutchy]

I think they call it "iQ"

Re:Google

[crutchy]

makes sense to me. advertising revenue is a pretty obvious revenue source. I read "ad network" as network of advertisers.

and btw, all this bullshit about advertising doesn't mean that android itself isn't open source... android IS open source, regardless of advertising revenue

Re:Google

[crutchy]

erm... android is open source SOFTWARE. wtf does hardware have to do with Android being open source or not? wtf does advertising have to do with it? do you people have rocks in your heads?

Re:Google

[crutchy]

i think the point is that you have the option to, which means you aren't forced into following what the parent software does (for example, LibreOffice from OpenOffice)

Re:Google

[hairyfeet]

Not to mention its all junk compared to the good stuff like Google FS which while built on open source they keep in house so they don't have to share. Make no mistake Google is no more a "friend" to FOSS or anything else for that matter, anymore than Apple "thinks different". they are an ad company that uses these things to get its real commodity which is eyeballs and data which is then sold to companies around the planet. They use FOSS because its free as in beer which minimizes cost but this is also why they won't indemnify and stand by their offerings like WebM or Android, this would cut into profits and is therefor not in their best interests. But if they truly cared about promoting FOSS they would have offered to indemnify those who used WebM and Android and then we might not be looking at H.264 becoming the locked down format that rules the web or having MSFT make more of Android than they do WinPhone.

Re:Google

[Dr_Barnowl]

OpenAPI doesn't always imply that the original component the API abstracts is available - it's usually the opposite, as OpenAPI typically refers to APIs mediated by remote procedure calls. So if the upgrade breaks your software, you don't get to choose the old version, you have to live with it, even if the changes remove features that your application cannot function without.

It's easy to see how this might be exploited

* BigCorp witnesses success of LittleCorp's "SuperThing" project which is based on their BigAPI service
* BigCorp develops "UltraThing" with some set of the features of "SuperThing"
* BigCorp changes their BigAPI service in a way that breaks SuperThing and watches LittleCorp haemorrhage customers who migrate to UltraThing

To a lesser extent this is also true of operating systems - while MS do bend over backwards to maintain backward compatibility (which is the cause of a lot of the woes on Windows), if they change part of the Windows API in a way that breaks your product, you either have to tell your customers to avoid certain service packs (which makes you look stupid), or fix your code ; you don't really have a cost-free choice there.

Re:Google

[AJH16]

That's the true ideal behind OSS though. At the end of the day, the objective of any OSS that is going to be successful needs to be to make money to pay development teams. This works because the software itself is a loss leader to support or some other marketable service. This is no different from what Google is doing with Android. They front the development and on official distributions they add their ad supported services to give them an income stream. It is perfectly allowed to bypass their revenue streams if you want with your own build of Android, though personally I believe in supporting Google in their effort since they were providing a free platform first and then only trying to use other service based mechanisms to try to profit from it.

It's true that their services are not OSS, nor would I really expect them to be. Services don't really lend themselves to OSS well since they have a cost to operate (since they require servers and the like) and this makes it very hard to successfully run one if you were to fragment your service providers by releasing the software that provides the service. There would also be no real possible revenue stream for supporting the service providers and would result in data fragmentation. They do however provide their services freely. I agree with the articles analysis that Open APIs are not the same thing as OSS and it is scary (and arguably stupid) to use one if it could put you at odds with the provider, but I don't really see much of a viable economic model for open source hosted services with major data requirements.

Re:Google

[hobarrera]

As I said, the bits and pieces that every Android phone has (and isn't by the carrier, since you don't even have to buy a phone from a carrier) aren't open source.
Sure, "all the source you get from google is open source". But you don't the get source for EVERYTHING; the google market and some other framework being the most important.

In short, there' no phone you can purchase, download the source, and rebuild the OS as-is. And lots of the closed software is provided by google (and usually some extras from the phone manufacturer).

Re:Google

[exomondo]

Are you a fucking moron? Read your own sentence. "...revenue through their ad network"

Are you a fucking moron? 'revenue through their ad network', how hard is that to understand? You have that much difficulty with something so simple?

Re:Google

[Pigskin-Referee]

Google is an expert at this. Convincing people that their open apis are the same as open source. They have and will never opensource their revenue generating products. They themselves don't believe in the open source economic model.

I have no idea what "They have and will never opensource their revenue generating products" is suppose to infer. In any case, "open source" aka "open sore" software is by definition unable to generate any substantial revenue. That is why it is the software of choice for devout socialist/fascist users throughout the software industry.

Open APIs?

[MrEricSir]

Like for example, the Windows API?

Seems like "Open API" is another way to say "proprietary software."

Re:Open APIs?

[betterunixthanunix]

Open APIs are a way to say, "Proprietary software platforms that you can write your own software for!" The word "trap" does not even come close to describing the nature of these systems, which are attempts by certain companies to control large software ecosystems (e.g. what happened with Windows).

Re:Open APIs?

[tibit]

That's like "open" industrial standards, like, um, CiP - common industrial protocol, developed by ODVA. It's "open" in the sense that if you pay them a couple thousand bucks and agree to all sorts of things, they'll politely let you read the freaking thing. Pretty steep for an "open" standard, if you ask me. And designed by a committe that must have had a couple armchair politicians included, because boy, did they overengineer that thing.

Re:Open APIs?

[Darinbob]

However the summary is a bit more dire than is probably what happens. If an API changes then there's a big chance you lose a lot of customers or customers refuse to upgrade, or your partners stop being your partners. Maybe Microsoft doesn't care about this but smaller companies are concerned and will do what they can to keep the APIs backwards compatible.

For instance at once company I was at I worked on the external APIs to the main product which allowed third parties and customers to integrate it with other products or write their own applications. If the API does not work then the value of the main product we sold would have been greatly lessened; our competitors had an external interface of some sort, even if it was as clumsy as doing an Oracle query and then parsing the output. So we'd have lost sales if we required customers to only use the functionality that we shipped with or to pay our consultants to do any integration work. If we made the APIs incompatible in a future release then word would have gotten out that we weren't reliable and partners would stop saying such nice things about us. The vast majority of enterprise software depends upon being able to configure and integrate the product with all the other unusual products out there. The customers need to be able to duct tape together 20 different products so they can tell their boss that they have an enterprise solution. So this is a huge incentive to keep the APIs stable lest you lose market share.

This is not about locking customers in since the customers know it's just as easy to buy a new product than it is to stick with your product that no longer works the way it used to. The only ones who can get away with this crap are the huge companies that offer solutions across the board. Anyone without the clout of Microsoft needs to keep customers happy.

Re:Open APIs?

[MrEricSir]

Maybe Microsoft doesn't care about this but smaller companies are concerned and will do what they can to keep the APIs backwards compatible.

I can't think of a single vendor that's bent over backwards more than MS to keep their APIs backward compatible -- the fact that Windows 7 can run applications from the 80's is a testament to that.

Re:Open APIs?

[kaizokuace]

Open API is just ....an API. I think the issue is with the way people and companies and developers have been talking about web app API's. So it's either a trap (or general foul play) or just a term that is coming into the vernacular of the internets. Which is more important of an issue though is my question. Companies being bad? or people calling things by different(misleading) names?

Well yes

[TheSpoom]

Because if you code up an "open", gratis API, and it's useful, people will build applications around it. Then, a year later, you start charging for it. Either the developers using your API have to pay or their applications won't work (at least, not without significant recoding, which often means significant developer cost). You're basically holding their code hostage. It's awesome if you're the API developer, of course.

Now, to be fair, this is only unethical if you infer that the API will continue to be free throughout its life. It's certainly not open source though.

Re:Well yes

[_merlin]

In my experience, it's just as bad, if not worse, developing add-ons for open source projects as it is for open APIs. As much as I hate Windows, it's a good example of a stable API. It doesn't change much, you can keep running old applications, shell extensions, COM modules and whatever else. Open source systems often seem to make incompatible changes at a ridiculous pace that people with plugins are forced to keep up with. Being open source isn't a magical solution to problems. A stable API/ABI is what you want, and it can be delivered, or fail to be delivered,
by open or closed source software alike.

Re:Well yes

[hobarrera]

Why is this modded "Insightful" instead of "Funny".
Windows API stable? Running old software on newer versions? I can't stop laughing!

Re:Well yes

[_merlin]

OK, let me clarify. The base Win32 APIs provided in system32.dll, kernel32.dll, comctl.dll, etc. Things like Direct3D, etc. change around a bit, but for stuff other than games, stability is pretty good.

Re:Well yes

[oakgrove]

Has it occurred to any of you open API vs source jokes that you are talking about two completely different things? Software can be open or closed with or without api's. Duh. What the hell is wrong with you people?

Re:Well yes

[serviscope_minor]

In my experience, it's just as bad, if not worse, developing add-ons for open source projects as it is for open APIs.

Really? Open APIs are prbably the best thing, better even than OSS. I don't count a documented proprietary API as open.

Open APIs are things like OpenGL, POSIX, standard libraries (e.g. C and C++), OpenMP, MPI etc. These are all documented by some standards organisation and there are multiple implementationsboth closed and open. To a large extent (especially these days), you can write once and recompile anywhere with minimal effort. Tjis is the easiest world to work in.

Pseudo-open APIs are also good too. Those are the ones that have mutated from OSS and have sprouted alternative implementations. Things like V4L2 (on OpenBSD as well as Linux), libjpeg (several forks/reimplementations). These all work pretty well and one can change implementations with little effort.

There's single implementation libraries which are basically as good as any of the above, things like libz, libpng, which are extremely stable and portable and never break if you don't use dodgy internal data structures.

Other OSS libraries are not quite so good, but many are. FLTK seems good at maintaining source compatibility across the entire 1.x series. libdc1394 makes using firewire camers sane on many platforms and is very stable.

Other OSS libraries are annoying (e.g. FFMPEG which is large, rapidly changing, exceptionally complex and almost undocumented. When they remove a function call, that's REALLY hard to fix). However, because they're OSS, one can simply keep using the old version and upgrade at one's leisure.

Documented proprietary APIs are often a pain in the neck. Win32 is a notable exception because MS know that a huge part of their dominance comes from almost everything running under windows, so they strive for bug-for-bug compatibility makeing it a very stable interface. That, IME is rare.

One option is that the API changes every 5 minutes, because the developer things it is a good idea.

When it is stable it's more like some venduh says "Oh look! Our camera supports windows AND linux. Then you discover it's some ancient version of RedHat, and the hack-job Windows XP service pack 2 1/2 with visual studio 2007 beta prerelease that happened to be on the developers machine when he compiled the driver. Sure the API never changes (yay! no updates!) but woe is you if your machine breaks and none of the OSs work properly on a modern machine. And you're also too damn scared to even reinstall the completely rotted XP install because you have no idea if it is possible to recreate the same setup and you can't afford for it to break, which it is slowly doing all by itself anyway, so you spend time hoping the prefectly good hardware dies so you don't have to deal with this again and can finally buy something which will run on a modern machine wich will set your work back (of course) but will put an end to the pain at least temporarily because almost all vendors are as bad.

But hey, stable proprietary APIs are great, right?

Re:Well yes

[shutdown+-p+now]

It's pretty stable for games, too, actually. I play a lot of games from late 90s (like, say, Fallout 2) or early 2000s (like AoW) on my Win7 x64.

Isn't the problem the same?

[multiben]

I have nothing against open source, but if an open source product changes its API for some reason, we still have changes imposed from the top down. The only option we have is to then maintain our own version of the opensource project or provide some sort of adapter component. What a headache! I use open APIs all the time. Skype, VST, google, Gracenote being just some of them. Very occaisionally they change - usually for the better due to de-cluttering the API while adding new features. I change my projects and it is rarely a problem. The overhead for doing so is tiny compared to the potential hassle of having to maintain builds and adpaters to potentially dozens of projects just because I want the API to stay exactly the same forever.

Re:Isn't the problem the same?

[betterunixthanunix]

Except that with an open source project, you can always fork -- and if an API change is so drastic that an entire software ecosystem is threatened by it, a fork is likely to happen (or a project may simply maintain two versions -- Apache does this). Firefox has come pretty close, but extension developers do not represent a large enough ecosystem for the community to fork Firefox, and the API changes are not drastic enough to necessitate such a thing.

Re:Isn't the problem the same?

[westlake]

Except that with an open source project, you can always fork --

In theory, yes.

In practice, the open source project can be so big or so arcane that you are going to need serious muscle and manpower behind you to make it happen.

Re:Isn't the problem the same?

[Korin43]

Except that with an open source project, you can always fork --

In theory, yes.

In practice, the open source project can be so big or so arcane that you are going to need serious muscle and manpower behind you to make it happen.

Something big and arcane like OpenOffice or XFree86?

Re:Isn't the problem the same?

[LordLucless]

You can often do something similar with a proprietary system - just keep running the old version. Yeah, you can't maintain and update it yourself, but with an Open Source project of even moderate complexity, only a very very few of its users are going to have the expertise to maintain and update a fork in the first place. It's a theoretical advantage for Open Source, but I imagine it would be realized only very rarely.

Re:Isn't the problem the same?

[martin-boundary]

I have nothing against open source, but if an open source product changes its API for some reason, we still have changes imposed from the top down. The only option we have is to then maintain our own version of the opensource project or provide some sort of adapter component. What a headache!

Think of open source as insurance against sudden changes. You can maintain your own version for as long as you need to move to the new API, thereby being less disrupted. Without this option of open source, you get disrupted immediately when the API changes and you have to react or remain in a broken state, pushing all your other work aside while this happens.

Re:Isn't the problem the same?

[martin-boundary]

Unless you pay a programmer to do it for you. The problem with closed source is you can't hire someone and tell them

"Here's $100, go sit in Microsoft's building and recompile their code with a couple of changes, just for me"

Re:Isn't the problem the same?

[LordLucless]

And have the expertise and time to manage the programmer. Sure, for a minor feature here and there, one that's simple enough for a non-techie to spec and test themselves, sure, a short-term contract's fine (although I doubt you'd get much done for $100). But if you're looking at anything more than that, you're going to be employing someone for weeks or months, plus testing, scope and management overheads. A big company can probably throw money at their IT department, and get them to manage a couple of contractors to do that - but then, a big company can just as easily do that to rewrite their software that depends on the closed API too.

Small businesses get screwed either way.

Oh, and please don't think I'm anti-OS, either. I'm typing this on a linux machine as we speak, I work with OS products every day, and have even contributed (very minor) patches to a couple. But I'm realist enough to admit its not a panacea. API changes are going to be annoying/expensive no matter what development methodology is behind them. Which is why we have Long-Term Support options, and versioning schemes that indicate API changes.

Re:Isn't the problem the same?

[i.r.id10t]

Assuming you can still license the old version...

Re:Isn't the problem the same?

>you can always fork

Yeah, riiiiight. I think I'll start a new meme: Open source is only immune from changes imposed from the top down if your time is worthless.

Re:Isn't the problem the same?

[Lunix+Nutcase]

Yes, of which neither could have been forked by a single developer or even a small group of developers. They are on the other hand given lots of development through paid developers.

Re:Isn't the problem the same?

[Lunix+Nutcase]

So you are trying to equate some single developer having to fork what could be complex software and spend their own time and money to do so to a fork of a project that has a number of large commercial companies behind it that can fund the developers to work on it? Are you an idiot?

Re:Isn't the problem the same?

[hobarrera]

It's not always posible to run old closed source software. Sometimes in wont work on newer OSs, or even newer hardware, and this is 100% unfixable.

Re:Isn't the problem the same?

[LordLucless]

It's not always posible to run old closed source software. Sometimes in wont work on newer OSs, or even newer hardware, and this is 100% unfixable.

Emulation. And it's just as unfixable for Open Source, unless you can afford/have the expertise to port it to your OS/hardware of choice.

Re:Isn't the problem the same?

[Lunix+Nutcase]

No one said large projects don't fork. His point was that large projects are usually impossible to fork by a single or small group of developers. OpenOffice.org and XFree86 were only possible to be forked because there were tons of people and commercial companies willingly to fund the work. If Joe Developer didn't agree with the path of XFree86 it would have been nigh impossible for them to sustain fork on their own without needing probably countless weeks or months in order to even gain a tiny ability to reasonably maintain it. In which case they are just as much put out as if some proprietary API had been changed and had to rewrite their work. And honestly, the second scenario is probably vastly easier to adapt to.

Re:Isn't the problem the same?

[oakgrove]

Every system can't be emulated. Not to mention the difficulty of finding installation media for many older systems. Or the legalities. Also, pretending that porting open source applications is equally as difficult as proprietary software is flat out laughable. Where do you people come from?

Re:Isn't the problem the same?

[Lunix+Nutcase]

You can maintain your own version for as long as you need to move to the new API, thereby being less disrupted.

Unless you are writing toy programs, almost no one has the ability these days to take on the role of maintaining every piece library or API that they rely on. So, no, you are just as disrupted because then you now have to get up to speed on the source code of each of these pieces you have to maintain which depending on what the library/API/etc is can be a monumental task. Far more painful than just adapting to the API change.

Re:Isn't the problem the same?

[flimflammer]

I think you proved his point for him. Yes.

Re:Isn't the problem the same?

[flimflammer]

Virtualization..?

Re:Isn't the problem the same?

[LordLucless]

Every system can't be emulated

Name one

Not to mention the difficulty of finding installation media for many older systems. Or the legalities

If you're trying to port a system you currently have running as to a new OS, then you presumably have both the media and the licenses, as you are already running the OS.

Also, pretending that porting open source applications is equally as difficult as proprietary software is flat out laughable. Where do you people come from?

Apparently, you come from a place that just ignores any part of a sentence that comes after a comma. I said it's just as unfixable unless you can afford/have the expertise to port it to your OS/hardware of choice. And no, that expertise is not easy to come by, nor cheap enough for your average business to use as a matter of course.

Re:Isn't the problem the same?

[oakgrove]

Yeah, forking xfree86 and open office is hard. Try doing the same thing with MS Office or Quartz and see how far you get no matter how much money and manpower you have. Now keep acting like you are too dumb to see the difference.

Re:Isn't the problem the same?

[oakgrove]

Virtualization is worthless of the architecture is different. Emulation is the only way around that and that only works if you have an emulator.

Re:Isn't the problem the same?

[oakgrove]

Where did the Ggp say anything about maintaining every library he relies on? He said go that route as a last resort while adapting to the new API. Where do you put all the straw men you build because you have quite a collection going from this thread.

Re:Isn't the problem the same?

[gnasher719]

Unless you pay a programmer to do it for you. The problem with closed source is you can't hire someone and tell them "Here's $100, go sit in Microsoft's building and recompile their code with a couple of changes, just for me"

So you can pay a programmer $100 to build a new version of OpenOffice for you with a few changes? Where do you find programmers that cheap?

Re:Isn't the problem the same?

[sFurbo]

Emulation doesn't always works when interconnecting with hardware. I have seen several cases of computers controlling old analytical instruments running windows 3.11 (or windows 95, or...), as the software wont work on newer OS'es, and emulation doeesn't works, as the software assumes some exact timing that isn't replicated in emulation (we think that is why, anyway).

Re:Isn't the problem the same?

[Korin43]

His point was that large projects are usually impossible to fork by a single or small group of developers.

This just in: Large projects require larger groups of people. Details at 7.

Re:Isn't the problem the same?

[hobarrera]

In some extreme cases, it might just build as-is on another architecture. In other cases, porting may not be so hard, specially if it's for some POSIX-compliant OS.

Re:Isn't the problem the same?

[jp10558]

How often do you see OSS that ever ran on an OS not run on a newer version of that OS? It's not common, though I may choose OSS that has a community around it vs drop and runs on Sourceforge...

Often times if there's a community at all, someone can at least try a re-compile for you at no cost.

Would you rather have nothing?

[Githaron]

Open-API is better than nothing. At least you can plug into the proprietary software using a relatively stable interface.

Re:Would you rather have nothing?

[betterunixthanunix]

I would rather not be at the mercy of Microsoft, Apple, Google, or Facebook. They do not need to change their API, they can just change the licensing and suddenly my software is threatened.

Re:Would you rather have nothing?

[Githaron]

True. But if you wanted or needed to integrate with their products, APIs allow you to do so easily. If you wanted to pull information off a site and the site did not have an API, you would have to request the HTML generated for the "human interface" and the parse through it. A simple redesign of the view of the origin website would easily cause the hack to break. At least with an API, the website owner has to be intentional in order to break the API.

Re:Would you rather have nothing?

I would rather not be at the mercy of Microsoft, Apple, Google, or Facebook. They do not need to change their API, they can just change the licensing and suddenly my software is threatened.

Good point. I was going to use google's map API, but you convinced me that building a clone of google maps myself is far better. If google starts to change me for use, your advice saved me from the expense of... building my own google maps clone.

Seriously, does anyone here get anything done in the real world? Making tradeoffs to get the job done with minimal cost and risk is not that rare a skill.

Re:Would you rather have nothing?

[oakgrove]

they're coming off as whiny children.

No, you've got that angle all sewed up, fella. Trust me.

Re:Would you rather have nothing?

[Richard_at_work]

Then don't use their offerings.

Oh wait, didn't a Sony employee recently get run out of Slashdotville because they no longer wanted to rely on BusyBox and intended to replace it with something they could control? I distictly remember a lot of derision about his plans...

Re:Would you rather have nothing?

[serviscope_minor]

Oh wait, didn't a Sony employee recently get run out of Slashdotville because they no longer wanted to rely on BusyBox and intended to replace it with something they could control?

No, they wanted to build an alternative based on a different license because people keep forcing vendors to stick to the terms of the GPL for busybox and in fact use that as a hook to force them to stick to the terms of the GPL for all the softwar ethat they ship.

In other words, the guy basically wanted te be able to break other people's licenses with impunity.

Re:Would you rather have nothing?

[Richard_at_work]

So yes, it was something they could control, and not fall under the control of someone else.

My point precisely.

Re:Would you rather have nothing?

[serviscope_minor]

My point precisely.

Well, that was a little ambiguous to say the least. The entire thread is about the API and source level control. As far as I know the Sony guy had no complaints about Busybox, or the direction it was going or the feature set in terms of source and features.

It wasn't clear to me that "control of the source" was equivalent to "being able to infringe a bunch of unrelated licenses with impunity".

A number of traps actually

[einhverfr]

Open source is superior in large part because not only can the small developer use the open API's but actually shape the development of the next generation through direct access to the developers of the API's used and even code contributions themselves. That cannot compare to open API's on a closed source platform.

Openwashing

[sakdoctor]

Yep, openwashing strikes again.
'Open API' means something akin to 'documented API' for proprietary software.

Re:Openwashing

[jo_ham]

Ah yes, the claim that the word "open" is owned by a small subset of people who think it can only and ever mean "open source software".

An Open API is just that - an API that is accessible and documented so that if your software wants to work with another piece of software you don't have to reinvent the wheel every time you want to do that.

Much like an electrical plug and socket being standard - the socket is the API to the power in your house. You are not obligated to use it (feel free to install your own connectors or simply splice into the wiring by hand if you must), but sometimes you just want to make a device that plugs into the wall, y'know?

"Openwashing" is such a laughably arrogant term. I'm fully behind open source - I think it is one of the best things to happen in the computer revolution, but running around trying to claim ownership of a term because you act like spoiled children because people you don't like use the term perfectly legitimately to describe an interface/protocol/standard etc just makes you look like your mom forgot to make your eggo this morning and left you in a grump.

Re:Openwashing

[icebraining]

Your example is great, because that's exactly the point. Like an electrical plug, to be open an API doesn't need to be merely documented - it has to be a standard. Anything with a single implementation is not and can never be a standard, and therefore it's not open.

Re:Openwashing

[jo_ham]

That's an enormous non-sequitur - a single implementation can certainly be open. Just because it's singular does not make it "not open" - that's that attempt to define the term "open" again.

Open does not mean standard, although a standard can be open (or closed), just as an open interface does not necessarily need to be a standard (like GSM or power sockets or RJ45 plugs etc, although it needs to be standardised in that it is relatively unchanging within itself).

Re:Openwashing

[sakdoctor]

Words have meaning, and meaning in particular contexts.
Corporate doublespeak attempts to corrupt that meaning, in this case by intentional reversal; applying a word to it's diametric opposite.

Most people here quite clearly understand that.

Re:Openwashing

[flimflammer]

So, what, open is a synonym for standard now?

Re:Openwashing

Words have meaning, and meaning in particular contexts.
Corporate doublespeak attempts to corrupt that meaning, in this case by intentional reversal; applying a word to it's diametric opposite.

So you think "open API" was created by PR people to confuse? Isn't it more likely that the word "open" is an adjective, and applying it to different things gives a meaning that depends on the thing?

My house is blue. So is the sky. What dastardly corporate conspirators are trying to trick us into thinking that my house and the sky are the same blue thing?

Most people here quite clearly understand that.

Claiming that most people agree with you is a silly way to fail at an argument. If your position is something more than a nutty conspiracy theory, you should be able to explain it. If most people already agree, why bother to argue it?

Re:Openwashing

[oakgrove]

So by your logic, why even bother to have dictionaries? Surely formal definitions are just another group of people arrogantly co-opting the language right? Right? The mind boggles.

Re:Openwashing

[crutchy]

case in point... Microsoft Internet Exploder, though I think they are gradually coming around

Re:Openwashing

[Dr_Barnowl]

Why is calling it "openwashing" arrogance? People saying "Open API" are basically saying "an API that we have documented with the intent that a third party may use it".

This used to be called a "software development kit". Changing the term to "Open API" is an attempt to associate your product with some of the caché of the Open Source movement, without actually doing anything Open Source.

"Whitewashing" being a term used to denote the representation of an activity in a more positive light that it would ordinarily attract, I find "openwashing" to be a more descriptive specialization of the term that describes the activity of labelling a "software development kit" as an "Open API". I don't see what's arrogant about a clever and accurate neologism.

Re:Openwashing

[drinkypoo]

'Open API' means something akin to 'documented API' for proprietary software.

Yes, that's because "Open" means "Interoperable", which is why "Open Source" and "Free Software" are different things, no matter what the people at the OSI want you to believe about their supposed influence on geek culture, including their supposed right to redefine the English language in their own image.

Re:Openwashing

[jo_ham]

Yes, words do have meaning, and the term "open" is not solely the domain of open source software, although that is certainly one of several possible uses.

Most people here clearly understand that, but some people will try to troll as much as possible to muddy the water and claim sole ownership of the word, and that any other use (especially by groups they despise) is some Machiavellian conspiracy rather than the simple use of an adjective that accurately describes the noun it is attached to.

Re:Openwashing

[jo_ham]

Nice non sequitur.

I did not claim that, and I think you know that (if you really didn't then, goodness, my deepest sympathies). My specific claim is that the term "openwashing" is an arrogant claim on a term used in a derogatory fashion when certain groups who are despised by slashdot use the term in a dictionary-supported manner to describe something. The claim is that the term open has not been correctly applied and is only there to try to add some PR fluff. That's quite clearly not true, but it does tend to get positive mods on slashdot.

The dictionary definition of open certainly fits.

The difference, of course, with a group of people who are writing a dictionary is that they don't have an agenda where any hint of the word "open" is used around proprietary software, or by companies who make a popular smartphone, or a social network, or a desktop OS is somehow obviously wrong and conspiratorial. (That's not to say linguists don't also have prejudices, but that's a whole other can of worms and will start to get us into syntax, spelling, grammar and slang).

Really, this is not difficult stuff to understand. It just makes you look a little foolish to pretend otherwise.

Re:Openwashing

[jo_ham]

Because an SDK is often much more than just the API (although it doesn't have to be), and may include multiple different APIs in a widget (that then may also have other non-open APIs, for example, iOS). The descriptor for an open API vs a private one is perfectly apt. SDK and API are not necessarily interchangeable words, although they are clearly strongly related.

The openwashing term is arrogant because it seeks to claim ownership of the word, or rather, who may use it. For example, the folks on here would have no problem calling it an Open API when it was part of an Open Source project, but somehow the identical thing in a project that features closed portions (or is entirely closed other than the API) is somehow "openwashing" and suddenly not a valid descriptor? All of the supposed reasons (dependent on the owner of the API if they make changes, dependency on other features that may rely on it etc) apply to both open source and proprietary software, with the only difference being that you could fork a project if you really didn't like the change - but then you have all the extra work to handle that the API is meant to reduce. That does not make the Open API any less open - that part is all about the openness of the project it is bolted to, which is also a key consideration, but doesn't change the accuracy of the term Open API when it refers to something that is part of a closed project.

The term applies to the API itself, not the software as a whole, and claiming that only open source projects can use the term is deliberately misrepresenting what it means because you (the general you, not you specifically) dislike the company or project using the phrase.

Re:Openwashing

[oakgrove]

Nice non sequitur.

I see you learned a new word. Now go learn what it means. Can you sense the irony?

Re:Openwashing

[jo_ham]

What does getting the creases out of my clothes have to do with this?

Which is better, less or more

I guess more is better. This question is like asking whether you'd like to own a car, or your car AND own the road. Sure, I could then change the rules, and start making a new kind of car. I'd have more control, but to take advantage, I'd have to do a lot more work.

Yeah, real world on line 1? Better than nothing!

[pla]

Which means that anyone connecting into the application will have to deal with the changes imposed from the top down.

That holds true only for "cloud" computing, where you have absolutely no control over exactly what happens to the servers, to the applications, or even to your data.

For typical day-to-day applications, including enterprise-level server apps, you absolutely can control what happens, by simply not upgrading to the latest and greatest every three months like the vendor wants you to - And as a rule, you'll find most companies don't do so, staying as far behind the bleeding edge (often two "major" versions) as their service agreement allows.

In larger shops, this happens precisely because upgrading would break any custom in-house apps developed to interface with UberSystem9000. In smaller ones, simply because they don't have the resources to have two people dedicated to nothing but installing service packs 40+ hours a week.

Case in point, you can still find fortune-500s running on an NT4 infrastructure on the server side, and I would dare say the majority of business desktops still run XP.

Comment removed

[account_deleted]

Comment removed based on user account deletion

Re:It's a free market

[MyLongNickName]

*pssst* Wrong story.

Proffitt?

[cpicon92]

1. Read an article about open APIs.
2. ?????
3. Brian Proffitt

Re:My black box is completely open

[Ethanol-fueled]

Your point is a good one, especially because hardware like PLCs also depends on interface APIs and hidden IP.

And as stuxnet demonstrated with SIEMENS hardware, yes, not being able to see the internals is a potential problem.

What do the two have to do with each other?

I believe the point of open source was so that we could all learn from one another and not reinvent the proverbial corner free rolling device.

API's are an interface, not the procedures that a program follows. This is really an apples to oranges comparison. Maybe the question to ask is, isn't it nice that we can interface with a website as opposed to not?

But we certainly couldn't download the source to Facebook and go start our own myface, with hookers and blackjack!

Re:No difference

[icebraining]

No, we mustn't assume anything, because TFA (the one who claims open APIs are "open enough") links the term to the Wikipedia page with a definition of open source.

Re:We should have ask this instead ...

[icebraining]

GIMP does have open APIs. They have less plugins because they have less users.

Re:We should have ask this instead ...

[icebraining]

Your post was confusing. You start by saying that "open-sourced software that offer open API (...) are far and few in between" and then you talk about GIMP, it gives the impression you're giving an example of one of those open-sourced softwares that don't offer open APIs.

Open APIs in propriety software

[Stormthirst]

Having well documented Open APIs is one thing. But until you have open source software, you will never see the undocumented APIs that the owners of the software are keeping hidden to give them an edge. I'd be surprised if Microsoft aren't the only ones who do this.

Re:Open APIs in propriety software

[hobarrera]

On this matter, I was really surprised by foursquare: they seem to allow one to do ANYTHING their website/applications do with the API they provide. I even suspect they actually use the API themselves (the web-interface is listed as an application actually).
There's an example everyone else should follow. Use ONLY the documented API for your own software.

Re:Yeah, real world on line 1? Better than nothing

[hobarrera]

And if it's closed source, AND a security hole is found, you've got yourself in a huge mess, seeing as how you *need* to upgrade to the latest version ASAP, or take the system down.
This can also happen due to compatibilty issues, for example.

Re:Sorry for the confusion

[oakgrove]

This is one of the stupidest long winded rants I've seen on here in a while. You should hang out with that apk guy.

Re:We should have ask this instead ...

[ozmanjusri]

For crying out loud, the GIMP authors still refuse users the basic 16-bit per channel support !!

No they don't.

http://www.gimp.org/docs/userfaq.html#16bit

When can we see 16-bit per channel support (or better)?
For some industries, especially photography, 24-bit colour depths (8 bits per channel) are a real barrier to entry. Once again, it's GEGL to the rescue. Work on integrating GEGL into GIMP began after 2.4 was released, and will span across several stable releases. This work will be completed in GIMP 3.0, which will have full support for high bit depths.

There's also the UFRaw plugin for 16 bit image processing. http://ufraw.sourceforge.net/

Open API will always Lag

[vaene]

I work quite a bit with the YouTube (Gdata) API and have also worked with many Open Source platforms as well. With Open source I am limited pretty much only by my ability in terms of finding out how things work and where the "hooks" are to get the most out of the system. With an Open API such as Gdata I am at the mercy of Google's developers as to what they wish to expose. I can make a request, but good luck with getting it fulfilled if it doesn't fit with their business model.

Re:Neither Open API or Open Software in important

[oakgrove]

No, fuck open api's and open source, and open imolementation. What we need is open architecture and open synergistic competence stacks. Open forward thinking end of day open crowd sourced open revenue open models. Open. Do I win anything?

Slowly closing APIs

[Animats]

Some major APIs have slowly become less open. Google once offered a SOAP search API. Then they backed down to their "AJAX API", which could only be used with Google display widgets. Even that's now being shut down. All that's left is "Google Custom Search", which does not allow a general web search.

Twitter once encouraged third party Twitter clients. They no longer do, and they have an authentication system that validates both app and user, so they can yank the credentials of any app they don't like.

The Yahoo search API used to be free, then went to a pay system.

The lesson from this is, don't use an external service API for anything important unless you have a contractual agreement that guarantees that it will stay around.

Re:We should have ask this instead ...

[crutchy]

don't worry. its just the photoshop fucktards trying to justify paying for software that isn't as good as something available for free

Open API is only fine if it's an open standard

[samael]

IMAP is an open API - truly open, because it's a standard and multiple people support it. RSS is an open API - because I can use an RSS reader with anyone I like.

If an API is only supported by one site then it's still lock-in, and if they change it (or close down, or raise their rates) then you're still fucked.

Re:Open API is only fine if it's an open standard

[Nerdfest]

People keep using the phrase "Open API" where they should be using the phrase "published API". They seem to be trying to make people think that it's something that it's not.

Re:Open API is only fine if it's an open standard

[serviscope_minor]

IMAP is an open API

It's an open protocol. POSIX is an example of an open API.

Open source vs open data?

[dsrg]

Isn't there a difference between having access to the source code and having access to the data that the source code can deliver (i.e the real value)? (And I'm mainly talking about web-based services here, not OSes or gadgets etc.) Sure, open APIs don't give access to the inner workings of the underlying software, but that's not always a critical factor. The value of having access to the data perhaps outweighs the risk of not knowing exactly how that data is generated. For example, a lot of public utility companies are (finally!) opening up their data to the public so that whoever can build a thingamajig based on public data. The most important thing is that I can get easy access to that data, not neccessarily that I can have full-fethered access to the code behind it. True, non-open software means the We The People have no real insight into HOW that data is crunched or WHAT data gets to be accessible, but that's kinda the situation with any data provider anyway, isn't it?

Re:Sorry for the confusion

[Dr_Barnowl]

For point 2, how hard is it for the author of GIMP to provide 16-bit per channel support?

A sibling points out that this is probably harder than it might seem, and why.

I'll throw my tuppence in and also point out - how hard is it for someone OTHER than the author of GIMP to provide 16-bit per channel support? Because GIMP is GPL software, there are no legal obstacles. The GIMP authors don't even have to like or accept your patches - because the software is GPL, you can distribute a modified version yourself ("HexaGIMP"?), and if 16-bit channel support is the killer feature that all users demand, the original GIMP will rapidly die on the vine.

Hell, put up a Kickstarter project or something. If there are so many users who can't live without this feature, presumably you can get them to pony up enough dollars to pay someone to implement it. Something you'd never be able to do with Photoshop - if Adobe, for much the same reasons as the GIMP authorship team, had insufficient resources to devote to developing a new feature, then you'd either have to i) live with it ii) pester Adobe until they develop it. You don't get option iii) get the feature developed by someone else, and if option ii) does eventually work, you're going to have to pay handsomely to upgrade your software.

experience of open source projects

[microphage]

"In my experience, it's just as bad, if not worse, developing add-ons for open source projects as it is for open APIs, y _merlin

What open source projects that you have experience writing add-ons for are you referring to here?

Simple

[jabberw0k]

Start by hiring one who can move decimal points at will.

Re:No difference

[TapeCutter]

I find this thread very strange. The whole point of an API is to hide the implementation details, and the whole point of open source is to expose them. Pragmatically there is no real difference to someone who just wants to use it, if anything I think most developers would just like to see a well documented API regardless of whether the source code is available or not .

I don't understand

[ggendel]

I work for a company that OEMs a product with a published API. They make quarterly updates, but here's the rub...

The updates continually update their back-end in non-backwards compatible ways. We end up running multi-cpu days of regression tests to find what's broke and then spend oodles of man-days tracking down what happened and figuring out workarounds each time we try to update. We're still using the API libraries that are many versions before the latest because of this.

At one point I couldn't figure out how to do something with their API,so I requested example code. They sent part of the source a real product that they market that does what I needed. I soon discovered that they don't use their own published interface, completely bypassing the API classes entierly to get to functionality I can't.

I'd take open source over this pain any day.

Re:Yeah, real world on line 1? Better than nothing

[pla]

Umm, except for being able to provision exactly the OS you want and install whatever software you want? This cloud FUD is absurd.

...Until Amazon tells you they can no longer allow you to run Windows-20XX instances because the EU banned its anti-competitive calculator app, and your entire infrastructure depends on a feature basically unique to Windows-20XX.

Lacking control of your own IT assets does not count as "FUD", it counts as a very real business liability.

Re:No, BusyBox cannot force compliance on third pa

[Richard_at_work]

No, what BusyBox were doing was relying on the termination clause in the GPLv2 - which does not grant you a new license to distribute if you violate it but come back into compliance...

BusyBox were using that little "oversight" to force compliance on third party code before they would grant a new distribution license - otherwise, the party would have no standing at all to distribute BusyBox even after coming back into compliance without BusyBoxes explicit agreement.

It wasn't restitution or redress, it was the fact that the violator completely lost all rights to distribute and would have to find an alternative that BusyBox were using to force compliance on code they had no control over.

Being unable to distribute BusyBox is, in a lot of cases, a fairly significant issue - there is currently no alternative, so you had to bow to BusyBoxes demands to get a new distribution license. Try and continue to distribute, and its trivial to prove that you were doing so without a license.

Re:No difference

[gewalker]

You are missing the real difference between Open Source and Open API.

Open source allows the developer to dig into the internals of the implementation, modify, and simply take advantage of the knowledge source to enhance debugging, or such like. Open API's allow gives the vendor flexibility to change the implementation without breaking all of the programs written to use the API without explicit internal knowledge of the code.

You can also define an API and deliver source -- as a consumer of the API, this is often the best of both worlds, I can write to the API and get upward compatibility, but use the source to patch or work around bug, debug, etc. accepting the risk of compatibility issues if I rely on the internal source code.

Each method has advantages & disadvantages to the "vendor & developer".

Comparing Linux & MS Windows. Both have API's - The API's in linux are often known as system calls, most developers never change or care about the internals, just that these API's work well.

The problem with API's arise when the API's do not do what you want, either due to defects or simply limits on their flexibility, or vendors decide to drop support or go out of business. API's + plus protect you against this risks, API's without source expose you to considerable risk beyond your ability to control.

McDonald's

[NewYork]

Open API is like McDonald's menu.

It s not just open APIs this is true of

[WOOFYGOOFY]

It's not just open APIs this is true of, it's open source itself, of code reuse itself.

The dream is sweet, - "don't write all that code! Save yourself all that work and just hook into THIS code base. The problem is , sure you hooked into that code base and got all that stuff for free but what happens when there's a bug? Does the community fix it right away? Maybe, but only maybe. .. what if they don't and what if the code base requires a huge effort to understand? Now you're screwed and to the exact same extent that you thought you were being given a free ride, except your customers are clammering for a fix and it's all YOUR fault from their POV.

If the sheer mass of code to be considered is big enough and the concepts unfamiliar enough, it's a real barrier to fixing anything. If the owners or acknowledged top dogs of that code base are unfriendly or aloof then so will the user's group be and that's a barrier to comprehension also. If the code base is undocuemnted, then that's something else to think about. We're going through this right now- the company has an open source code base but they're unfriendly, curt, non-responders and so is the UG. Do we decide "meh, we have the source, how bad can it get even with zero assistance ?" or do we decide that it's just not worth the risk and hassle and look elsewhere?

There's a sweet spot to be had between not reinventing the wheel and not being crushed by it.