The US Department of Defense (DOD) has issued a policy that officially authorises the use of open-source software at the department, a move open-source pundits say opens the door to more government use of open-source software.
Open-source software within DOD is accepted as long as it complies with the same DOD policies for commercial and government off-the-shelf software and meets certain security standards, according to a memo outlining the policy written last week by John Stenbit, assistant secretary of defense and DOD chief information officer (CIO).
The policy is significant and sets an important precedent, said Tony Stanco, director of the Center of Open Source & Government and associate director of the Cyber Security Policy & Research Institute at George Washington University in Washington, DC.
"This is the first time the federal government in the US has given an official policy towards open source," he said. "The policy puts it at a level playing field with proprietary software and that is exactly the way it should be. Open source before wasn't discussed and that makes people wonder if they should use it."
Stanco heralds the DOD policy as a victory for the open-source movement and sees it as a precedent that will lead to a jump in usage of open-source software at DOD and elsewhere at government organisations worldwide.
"Open source has gone legitimate, the US government was being lobbied very hard not to go this way by the software industry," he said. "This policy legitimises the use of open source right around the world."
Breaking the silence on open source does not mean the DOD is picking favourites, said Lieutenant Colonel Ken McClellan, a Pentagon spokesman.
"This memo sets out an even-handed approach to software acquisition and that is what it has always been (at the DOD)," he said on Friday.
Lack of a policy has not held back adoption of open-source software at the DOD, according to a Mitre study released early this year. In fact, the DOD to a large degree depends on free and open-source software for infrastructure support, software development, security and research, Mitre found.
One paragraph in the short DOD memorandum is reserved for an explanation of open-source licensing, particularly General Public License (GPL) requirements. Under the GPL, the most prevalent open-source license, users have to make any changes to the source code public when distributing the software. Linux, for example, is licensed under the GPL.
Stenbit in his memo tells those in charge of acquiring software at DOD to comply with all licensing requirements and "strongly" encourages them to consult a lawyer to make sure that the implications of the license are fully understood.
One expert said the GPL should not be a major hurdle for the DOD. Confidential software code should be built on top of open-source code and not be part of the core code, circumventing the public release requirement, said Bruce Perens, an open-source advocate.
"That means that ultra-secret software should probably be a user-mode application and not be part of the kernel. Simple decisions like that need to be made when developing software," he said.
According to Perens, the DOD considered banning GPL software, but decided against doing that because it is already widely used in the DOD. Furthermore, there is a clear benefit for the DOD to have full control over the software, he said.
Microsoft, the world's largest software vendor and based in Redmond, Washington, has faced increased competition from open-source products in markets around the world, especially in emerging countries. Steve Ballmer, Microsoft's chief executive officer, in a memo sent earlier this week called noncommercial software and Linux in particular a "competitive challenge."
"IBM’s endorsement of Linux has added credibility and an illusion of support and accountability, although the reality is there is no 'centre of gravity,' or central body, investing in the health and growth of non-commercial software or innovating in critical areas like engineering, manageability, compatibility and security," Ballmer wrote to highlight why he thinks Microsoft's products are superior.
In a statement Thursday, Microsoft said it is "committed to working with the DOD to deliver products that meet its requirements and deliver cost effective, value-based solutions." Microsoft thinks it is "notable" that the DOD's policy says that people need to be aware of the software licenses they use. "Licensing terms are important but sometimes overlooked," according to Microsoft, which itself has been under fire from users over its licensing restrictions and cost.
A copy of Stenbit's memo can be found on the Center of Open Source & Government Web site, http://www.egovos.org/pdf/OSSinDoD.pdf
Read up on the latest ideas and technologies from companies that sell hardware, software and services. - White PaperWhat you don’t know can destroy your business. It’s hard to imagine modern business without the internet but in the last few years it has become fraught with danger. Read on to discover how internet security can give your business a competitive advantage.
- White PaperLearn to tie virtualized computing to virtualized storage, to offer a dynamic set of capabilities within the data centre and create improved performance and system reliability. Discover how best to utilize EMC Celerra in a VMware ESX environment.
- White PaperView this webcast and discover the drivers for changing network design practices, why many organisations are changing their approach to network architecture and how enterprises should be moving forward with open architecture multi-vendor network solutions. Register now and learn how your business can maximize the business value of the enterprise network.
Discover how SOA can create smarter outcomes for your business.
Attend and learn:
- How SOA is helping leading companies to become more agile
- Where you should be applying SOA processes in your company
- The top SOA implementation mistakes to avoid
Click here for more information.
- +
CIO Live Podcast #79: Brent D Taylor, author of The Outsider's Edge: The Making of Self-Made Billionaires Part II 05 October, 2007 06:00:00
For his new book, The Outsider's Edge: The Making of Self-Made Billionaires, social researcher Brent D Taylor spent four years of intensive research investigating the psychological make-up and backgrounds of some of the world's richest men and women, including IT luminaries Bill Gates, Larry Ellison and Steve Jobs. Taylor discovered that, despite working in different industries and coming from different upbringings, they all have one thing in common -- they are all outsiders. - +
CIO Live Podcast #78: Brent D Taylor, author of The Outsider's Edge: The Making of Self-Made Billionaires 28 September, 2007 17:34:25
For his new book, The Outsider's Edge: The Making of Self-Made Billionaires, social researcher Brent D Taylor spent four years of intensive research investigating the psychological make-up and backgrounds of some of the world's richest men and women, including IT luminaries Bill Gates, Larry Ellison and Steve Jobs. Taylor discovered that, despite working in different industries and coming from different upbringings, they all have one thing in common -- they are all outsiders. - +
CIO Live Podcast #77: Panasonic Speeds Up Trans-Pacific File Transfers, Part III 21 September, 2007 07:00:00
Part three in our three-part special report from CIO's sister publication Network World in the US, as Paul Desmond reports from the Network World IT Roadmap Conference in Santa Clara, California. With development teams in the US and Japan, Panasonic needed a more efficient way to move very large files between the two locations. Iben Rodriguez, IT consultant for Panasonic Research and Development, explains how a storage-area network and virtual server technology helped speed up WAN performance. - +
CIO Live Podcast #76: Panasonic Speeds Up Trans-Pacific File Transfers, Part II 14 September, 2007 07:00:00
Part two in our three-part special report from CIO's sister publication Network World in the US, as Paul Desmond reports from the Network World IT Roadmap Conference in Santa Clara, California. With development teams in the US and Japan, Panasonic needed a more efficient way to move very large files between the two locations. Iben Rodriguez, IT consultant for Panasonic Research and Development, explains how a storage-area network and virtual server technology helped speed up WAN performance. - +
CIO Live Podcast #75: Panasonic Speeds Up Trans-Pacific File Transfers, Part I 07 September, 2007 07:00:05
Part one in our three-part special report from CIO's sister publication Network World in the US, as Paul Desmond reports from the Network World IT Roadmap Conference in Santa Clara, California. With development teams in the US and Japan, Panasonic needed a more efficient way to move very large files between the two locations. Iben Rodriguez, IT consultant for Panasonic Research and Development, explains how a storage-area network and virtual server technology helped speed up WAN performance.
- +
SOA What? Why You Need SOA Governance Framework 04 December, 2008 08:32:00
Adopting services oriented architecture (SOA) in your enterprise without thinking through IT governance can cause something like the Gold Rush in the 1800s; extreme rates of growth and minimal law and order which produce unexpected outcomes. - +
The Myth of Cloud Computing 04 December, 2008 08:25:00
Why the rapid spread of virtual technology is becoming a security riskWhy the rapid spread of virtual technology is becoming a security risk. - +
Who Pushed Vendors Toward Better Security? 04 December, 2008 09:38:00
Hint: It had something to do with pressure from customers and government agencies, writes Oracle CSO Mary Ann DavidsonHint: It had something to do with pressure from customers and government agencies, writes Oracle CSO Mary Ann Davidson. - +
CPO & CISO: A Comprehensive Approach to Information 04 December, 2008 08:42:00
GE CPO Nuala O'Connor Kelly advocates greater CPO/CISO cooperation to place the right value on information assets.GE CPO Nuala O'Connor Kelly advocates greater CPO/CISO cooperation to place the right value on information assets. - +
Virtually every Windows PC at risk, says Secunia 04 December, 2008 08:00:00
Almost all PCs scanned by patch tool have an unpatched app; 46% have 11-plus.More than 98% of Windows computers harbor at least one unpatched application, and nearly half contain 11 or more programs at risk from attack, a Danish security company said Wednesday.
Fortinet November Threatscape Report Shows Calm Before Holiday Storm 05 December, 2008 16:00:00
Epicor® Cited as an Order Management Solutions Leader by Independent Research Firm 05 December, 2008 15:52:00
F-Secure: Growth In Internet Crime Calls For Growth In Punishment 05 December, 2008 13:00:00
International researchers gather in Sydney to preview the clever web 05 December, 2008 09:48:00
Borderless corporate networks to shift focus to secure content management in Australia in 2009 04 December, 2008 16:06:00
|
||
|
||
|
|
||
|
Wireless LANs: Is my enterprise at risk?
Achieve an overall understanding of the risks associated with wireless LANs. Discover their inherent properties, as well as what makes them different from wired networks. Read on to uncover a list of recently published articles on real-life breaches and incidents illustrating the need for proactive measures to mitigate wireless security risks.
Buying Guides
Buying Guides
