Getting It Right With Open Source Software

Lean how to manage software supply chain risk

What you'll learn

Risks associated with using open source software components in software development

Examples of where it goes wrong with open source software including legal cases and security vulnerability exploits

Industry best practices and standards such as the OpenChain Project and ISO 5230

A case study of the benefits of implementing an open source software management program for software developers

Requirements

This course presumes no knowlege of managing open source software

Description

Our popular "Get it Right With Open Source Software" course is now available as a self-paced program with certification. This course is designed to equip participants with the essential knowledge and skills needed to effectively manage the risks associated with using open source software within their organization and across their supply chain.Whether you are a developer, legal professional, compliance officer, or business leader, this course provides practical insights into best practices for handling open source software securely and in compliance with relevant regulations. It covers key topics such as licensing, security vulnerabilities, risk assessment, and governance frameworks, ensuring that participants can make informed decisions about open source usage.A major advantage of this self-paced format is the flexibility to learn at your own speed, allowing professionals to balance their learning with work commitments. No prior knowledge is required, making it accessible to individuals at all levels, from beginners to experienced professionals seeking a structured approach to open source risk management.By completing this course, participants will earn a recognized certification, demonstrating their expertise in open source software compliance and security. Enroll today to enhance your skills and safeguard your organization’s software ecosystemIf you are a software developer, It risk/governance manager this course is for your

Overview

Section 1: Getting it Wrong with Open Source Software

Lecture 1 Getting it Wrong with Open Source Software

Lecture 2 The Open Source Software Supply Chain

Lecture 3 Accumulating the Risks with Open Source

Lecture 4 The Organisational Impacts: Apache Struts

Lecture 5 The Organisational Impacts: Log4J

Lecture 6 The Organisational Impacts: Heartbleed

Lecture 7 The Organisational Impacts: Supply Chain Attacks

Lecture 8 Regulating Open Source Software

Lecture 9 The Open Source Definition

Lecture 10 The Organisational Impacts: Patrick McHardy

Lecture 11 The Organisational Impacts: SFC v Vizio

Lecture 12 The Organisational Impacts: Stockfish v ChessBase

Lecture 13 The Organisational Impacts: Truth Social

Lecture 14 The Organisational Impacts: CoKinetic Systems v Panasonic Avionics

Lecture 15 The Organisational Impacts: Artifex

Lecture 16 The Organisational Impacts: Lynwood Investments v F5 Networks

Lecture 17 The Organisational Impacts: XimpleWare v Versata Software

Lecture 18 The Organisational Impacts: Enforcement is not Exclusively GPL

Lecture 19 The Organisational Impacts: Due Diligence

Lecture 20 Chapter 1 Recap

Section 2: THE INTELLECTUAL PROPERTY BEHIND MODERN SOFTWARE

Lecture 21 The Intellectual Property Behind Modern Software: Introduction

Lecture 22 IP Concepts Relevant to Open Source Software

Lecture 23 Chapter 2 Recap

Section 3: Chapter 3 OPEN SOURCE LICENSES AND LICENSING MODELS

Lecture 24 Open Source Licenses and Licensing Models: Introduction

Lecture 25 The Spectrum of Licenses

Lecture 26 Permissive Licenses

Lecture 27 Copyleft Licenses

Lecture 28 JIDE: A Licensing Story

Lecture 29 BMW: A Licensing Story

Lecture 30 Tesla Violates the GPL

Lecture 31 Non–Open Source Licensing

Lecture 32 Non-Open Source Licensing: Morality Licenses

Lecture 33 Non-Sensical Licenses

Lecture 34 Licensing Compatibility

Lecture 35 Multi- Licensing or Dual Licensing

Lecture 36 Non-Open Source Licensing: Closed Source Licensing

Lecture 37 Chapter 3 Recap

Section 4: CHAPTER 4 OPEN SOURCE SOFTWARE COMPLIANCE

Lecture 38 Open Source Software Compliance: Introduction

Lecture 39 Open Source Software Compliance Goals

Lecture 40 Licensing Triggers: Distribution

Lecture 41 Licensing Triggers: Incorporation

Lecture 42 Licensing Triggers: Linking

Lecture 43 Aggregate Software

Lecture 44 Licensing Triggers: Modification

Lecture 45 Licensing Triggers: Translation

Lecture 46 Open Source Software Blind Spots

Lecture 47 Chapter 4 Recap

Section 5: CHAPTER 5 GETTING IT RIGHT WITH OPEN SOURCE SOFTWARE

Lecture 48 Getting It Right With Open Source Software: Introduction

Lecture 49 Achieving Success In Your Compliance Program

Lecture 50 ISO 5230 OpenChain Standard

Lecture 51 OpenChain Program Management Plan

Lecture 52 Best Practices For Your Open Source Software Compliance Part 1

Lecture 53 Chapter 5 Recap

Section 6: CHAPTER 6 MANAGING COMPLIANCE: TOOLS

Lecture 54 Managing Compliance: Tools: Introduction

Lecture 55 Combining Open Source Software Compliance with the DevOps Processes

Lecture 56 The SBOM & Software Composition Analysis

Lecture 0 Software Composition Analysis Tools

Lecture 0 Shifting Left

Lecture 0 Chapter 6 Recap

Lecture 0 Interneuron OpenChain: A Case Study: Introduction

Lecture 0 Resources

The course is aimed at anyone concerned with or involved in software management, from Developers to Legal Executives,Relevant for develoeprs, architects, legal, compliance and risk managers,References industry best practices such as the OpenChain Project