Antepedia Reporter and Fossology: Updates and new challenges toward software tracking throught the whole software life cycle, Guillaume Rousseau, Antelink.

•

0 gefällt mir•781 views

During this talk we will describe how tools dedicated to open source components and source code scanning like Fossology or Antepedia Reporter help development tools to enforce open source licensing policies. A particular scope will be provided on new trends and challenges regarding Software tracking issues which no longer focus on open source component tracking, but tracking of all artifacts produced over the whole software life cycle including source code items and build artifacts.

Technologie Business

Panel: Benefits and challenges
of integrating open source
components.

Copyright Antelink 2013 CC BY-NC-ND 3.0

How technical solutions can help to
reach legal quality
Co-‐author
/
IPR
Tracking:
A
methodology
for

Component
Based
and
Collabora@vely
Developed

soCware
(QualiPSo
A1)

Assistant
professor
at
INRIA/Univ.
Paris
Diderot

Co-‐founder
of
Antelink,
INRIA
spinoﬀ,
single
EU
player

developing
tools

Guillaume ROUSSEAU

Copyright Antelink 2013 CC BY-NC-ND 3.0

When
can
you
talk
about
Legal
Quality
issue
?

Lack of contradictory
evidences in the event of
a litigation through the
software supply chain.

Copyright Antelink 2013 CC BY-NC-ND 3.0

When
can
you
talk
about
Legal
Quality
issue
?

Spend too much time to
maintain qualified bill of
materials from design to
delivery over the whole
software factory.

Copyright Antelink 2013 CC BY-NC-ND 3.0

When
can
you
talk
about
Legal
Quality
issue
?

Choose the right components
as soon as the design phase,
with very few information
about the components and
their alternatives available.

Copyright Antelink 2013 CC BY-NC-ND 3.0

When
can
you
talk
about
Legal
Quality
issue
?

Do not get full benefit of
open source and proprietary
reusable components because
of missing third party
components’ licenses
compliance policy.

Copyright Antelink 2013 CC BY-NC-ND 3.0

Why
do
you
need
Tools
?

Produc@vity
(reduce
@me)

Integrity
(quality
of
the
informa@on)

Copyright Antelink 2013 CC BY-NC-ND 3.0

When
do
you
have
to
use
state
of
art
tools

to
increase
legal
quality

?

•  Audit
your
soCware
asset
(your
ﬁrst
BoM
J)

•  Set
up
Compliance
Policy

•  Provide
BoM
with
accurate
third
par@es
license
and

aSribu@on
informa@on.

•  Check
your
ability
to
answer
support
request
?

•  Check
copyright
(who
developed/owned
your
soCware)

•  Scanner
for
informa@on
discovery
(Author
metrics,
copyright,

license,
vulnerability,
…)

Why
do
you
have
to
use
tools

?

•  This
is
the
state
of
art,
do
it
at
your
own
risk
if
your

are
not
using
them

•  Some
of
them
are
free
(fossology,
Oslc,
Reporter
free

edi@on,
…)

Copyright Antelink 2013 CC BY-NC-ND 3.0

•  Standard
like
SPDX
are
making
your
life
much
easier

(see
for
instance
compliance
table
comparing
policies

from
FSF,
Eclipse,
Apache
found.

Contact

www.antelink.com

contact@antelink.com

+33
(0)1
42
39
30
78

Copyright Antelink 2013 – Do not distribute without prior written agreement

Weitere ähnliche Inhalte

Was ist angesagt?

AI in Manufacturing & the Proposed EU Artificial Intelligence Act

Barry O'Sullivan

To protect your business from cyber attack, you must understand where you are vulnerable and structure defenses to thwart attacks. This innovative study from HP Security Research brings the information you need to do that. It provides a broad view of the 2014 threat landscape — a specter of new threats brought by new technologies on a backdrop of known vulnerabilities and exploits. Then it drills down into specific technologies you may use like open source, mobile, and the Internet of Things.

HP cyber risk report 2015

Simone Luca Giargia

NIST Cybersecurity Framework Background and Review | Jack Whitsitt

Jack Whitsitt

Spring Splash 3.4.2019: When AI Meets Ethics by Meeri Haataja

Saidot

Resiliency-Part One -11-3-2015

Dr Robert D. Childs

Bock Alan D 09-2016 Personal resume

Alan Bock, CHS-V

Ethics of Analytics and Machine Learning

Mark Underwood

Trust and security technologies: Lessons from the CRISP project

Trilateral Research

Road map for actionable threat intelligence

abhisheksinghcs

AI cybersecurity

ShauryaGupta38

RPAS related privacy and data protection: practical advice for RPAS users

Trilateral Research

Learn how touch is becoming the new normal for how clinicians work and share information. Visit the Intel Health & Life Sciences Community for more conversations, blogs, videos, and white papers on the impact of mobility and touch in healthcare environments. For more on Healthcare IT engage here: Twitter: www.twitter.com/IntelHealthIT LinkedIn: http://www.linkedin.com/company/it-center?trk=company_name Community: https://communities.intel.com/community/itpeernetwork/healthcare

Power of Health IT Touch

Intel IT Center

During the past years, cyber threat intelligence (CTI) discipline has been adopted by organisations worldwide. While CTI’s best practices are still developing, finding the right technology to support your CTI analysts’ workflows and daily activities is hard. And advertising from vendors makes it even harder. This session will cut through the propaganda: providing a vendor-agnostic look at the process of selecting the right tools by providing a primer on the CTI cycle. Second, hear an overview of the current threat intelligence platform (TIP) landscape and explore the limitations that have been spotted by researchers and practitioners. Finally, learn tangible recommendations related to TIPs for different user groups.

Still thinking your Ex(cel)? Here are some TIPs - SANS CTI Summit 2021

Andreas Sfakianakis

“AI is the new electricity” proclaims Andrew Ng, co-founder of Google Brain. Just as we need to know how to safely harness electricity, we also need to know how to securely employ AI to power our businesses. In some scenarios, the security of AI systems can impact human safety. On the flip side, AI can also be misused by cyber-adversaries and so we need to understand how to counter them. This talk will provide food for thought in 3 areas: Security of AI systems Use of AI in cybersecurity Malicious use of AI

AI and Cybersecurity - Food for Thought

NUS-ISS

Comparative review of the First Aid App: Presentation of findings to National...

Trilateral Research

Introduction to AI Governance

Paweł Skorupiński

i2 Contact Tracing One Pager

Sydney Wolff

Industry Standards as vehicle to address socio-technical AI challenges

Ansgar Koene

Trusted, Transparent and Fair AI using Open Source

Animesh Singh

Challenges in Applying AI to Enterprise Cybersecurity

Tahseen Shabab

Was ist angesagt? (20)

AI in Manufacturing & the Proposed EU Artificial Intelligence Act

HP cyber risk report 2015

NIST Cybersecurity Framework Background and Review | Jack Whitsitt

Spring Splash 3.4.2019: When AI Meets Ethics by Meeri Haataja

Resiliency-Part One -11-3-2015

Bock Alan D 09-2016 Personal resume

Ethics of Analytics and Machine Learning

Trust and security technologies: Lessons from the CRISP project

Road map for actionable threat intelligence

AI cybersecurity

RPAS related privacy and data protection: practical advice for RPAS users

Power of Health IT Touch

Still thinking your Ex(cel)? Here are some TIPs - SANS CTI Summit 2021

AI and Cybersecurity - Food for Thought

Comparative review of the First Aid App: Presentation of findings to National...

Introduction to AI Governance

i2 Contact Tracing One Pager

Industry Standards as vehicle to address socio-technical AI challenges

Trusted, Transparent and Fair AI using Open Source

Challenges in Applying AI to Enterprise Cybersecurity

Andere mochten auch

Present Progressive Presentation

yarelli herrera

Economics of open source, OW2con11, Nov 24-25, Paris

OW2

Using Community Clouds for Load Testing- the ProActive CLIF solution, OW2con'...

OW2

Hedera introduces how to manage and pilot the entire IT stack from a unique console. It's the first fully featured unified and integrated cloud platform that provides end-to-end cloud infrastructure solution and gives customers flexibility and choice to integrate with their existing IT environments. Customers have flexible controls to manage and extend their IT environments to clouds with multiple physical, virtual and cloud connectors.

Unified Infrastructure Management powered by Kanopya, OW2con'12, Paris

OW2

The OpenCloudware collaborative R&D project aims at building an open software engineering platform, for the collaborative development of distributed applications to be deployed on multiple Cloud infrastructures. It will be available through a self-service portal. We target virtualized multi-tier applications such as JavaEE - OSGi. The results of OpenCloudware contain a set of software components to manage the lifecycle of such applications, from modelling (Think), developing and building images (Build), to a multi-IaaS compliant PaaS platform (Run) for their deployment, orchestration, performance testing, self-management (elasticity, green IT optimisation) and provisioning. Applications can be deployed potentially on multiple IaaS (supporting either one IaaS at a time, or hybrid scenarios). The OpenCloudware project is coordinated by France Telecom Orange, funded by the french Fonds National pour la Société Numérique (FSN) and endorsed by competitiveness clusters Minalogic, Systematic and SCS.

OpenCloudware: the Cloud application lifecycle management platform, OW2con'12...

OW2

Accord Project Solutions Linux Ow2

OW2

Presentation team ngx 5주차 발표자료

Matthew Chang

Ow2 Open World Forum09 Bonita Use Case

OW2

Microsoft Power Point Facet5 Presentatie Linked In

Michiel Castelijns

Hello, social m edia

Vernon Joseph Go

Palacio Gobierno del Ecuador

Pablo Guaña

Hammr is an OW2 open source, command-line tool for creating consistent and repeatable machine images for different cloud or virtual environments, or migrating live systems from one environment to another. Agility and automation are key factors in today’s cloud era. It has never been easier to provision new instances on-demand with a few command lines. However, the actual machine images used to provision these instances, are typically still created and maintained by hand. Hammr helps organizations automate the creation of these images. This presentation will provide an overview of the hammr project, including a focus on Docker integration and how hammr can be used to quickly build and run Docker images, helping accelerate development and test processes among other benefits. The presentation will also help attendees understand how they can become involved in, and benefit from, the hammr project.

Industrializing the creation of machine images and Docker containers for clou...

Jaap

Hurricane web quest

God Love You

Ow2 Open World Forum09 France Telecom Use Case

OW2

Ppt ch 16

dphil002

Discovering Tolerance.pptx

Vanessa Capaldo

Эволюция продукта

Pavel Antonenko

Ow2 Open World Forum09 Trustie Project

OW2

Andere mochten auch (20)

Present Progressive Presentation

Economics of open source, OW2con11, Nov 24-25, Paris

Using Community Clouds for Load Testing- the ProActive CLIF solution, OW2con'...

Unified Infrastructure Management powered by Kanopya, OW2con'12, Paris

OpenCloudware: the Cloud application lifecycle management platform, OW2con'12...

Accord Project Solutions Linux Ow2

Presentation team ngx 5주차 발표자료

Ow2 Open World Forum09 Bonita Use Case

Microsoft Power Point Facet5 Presentatie Linked In

Hello, social m edia

Palacio Gobierno del Ecuador

Industrializing the creation of machine images and Docker containers for clou...

Jaap

Hurricane web quest

God Love You

Ow2 Open World Forum09 France Telecom Use Case

Ppt ch 16

Discovering Tolerance.pptx

Эволюция продукта

Ow2 Open World Forum09 Trustie Project

Ähnlich wie Antepedia Reporter and Fossology: Updates and new challenges toward software tracking throught the whole software life cycle, Guillaume Rousseau, Antelink.

Owasp_Security_Labeling_System

luisenriquezA

Open Source & Open Development

Sander van der Waal

Controlling the value in software companies

Johan Örneblad

Open Source Software Licence Compliance: Art or science?

Shane Coughlan

Open Source vs Proprietary

M. Antoinette Jerom

Open Source Project Management

Semen Arslan

Social Code Scanning

Symphony Software Foundation

Supriya Bhosale who is a Project Management Consultant at Cognizant Technology Solutions along with Nilesh Kherdikar who is a Sr. Consultant at Cognizant Technology Solutions took a Session on "Digital Assurance for Connected World" at Global Testing Retreat #ATAGTR2019 Please refer our following post for session details: https://atablogs.agiletestingalliance.org/2019/12/05/global-testing-retreat-atagtr2019-welcomes-supriya-bhosale-nilesh-kherdikar-as-our-esteemed-speaker/

#ATAGTR2019 Presentation "Digital Assurance for Connected World" By Supriya B...

Agile Testing Alliance

Open Source Software: What Are Your Obligations?

Source Code Control Limited

As developers of open source and free software, we share our code freely with the world. It feels great. The problem is when someone points out that the code can't be used for some odd reason. Either because of missing license information or because the reported licenses are incompatible. If you're writing code then you shouldn't miss this talk. We'll be showing which licenses you should avoid mixing (for e.g Apache v2 inside GPL v2) and other tips to avoid a licensing headache. In the end we'll talk about the SPDX format introduced by the Linux Foundation and show practical examples.

Ubucon 2013, licensing and packaging OSS

Nuno Brito

sgetchel

sgetchel

Open source software presents a huge opportunity for public sector organisations in the UK. Adopting open source solutions allows assets to be shared and re-used; freeing organisations from massively expensive, inflexible “lock-in” solutions. To ensure that this potential is realised, it is imperative that organisations adopt a process for managing potential licensing, security and encryption content associated with open source code. Join us as we share our tips for streamlining the open source adoption and management process and removing uncertainties around third party software vulnerabilities.

Leveraging Open Source Opportunity in the Public Sector Without the Risk

Protecode

The author invites you to read three interviews with representatives of three large, modern and interesting projects to learn about their software development methodologies and about how they use static code analyzers in particular. The author hopes that you will find this article interesting. The following companies took part as interviewees: Acronis, AlternativaPlatform, Echelon Company. Sincerely yours, Aleksandr Timofeev

Three Interviews About Static Code Analyzers

Andrey Karpov

Open Source ETL

David Morris

There are multiple reasons why Open Source Software OSS is a benefit for all organisations and in particular in Public Sector. All of the organisations represented on this call will be tasked with delivering solutions for specific requirements and at great speed. Why create those solutions from generic platforms and be dependent on their long release cycles to evolve the solutions when you can develop just what is needed and then share that with other PS orgs who can modify to suit their requirements which makes for rapid development and lack of redundancy Ultimately you will be able to control your own destiny and set your own pace for delivering exactly what is needed.

Leveraging Open Source Opportunity in the Public Sector Without the Risk

Source Code Control Limited

Open source

Sahil Kajani

Ingex is an open source project that can replace tens of thousands of dollars worth of equipment in TV studios and archive operations. Created in the BBC's research labs, we are now aiming to transfer it into the wider industry as a sel-sustaining open source project. We look at business models around partnerships, issues with licensing, and how to partner with non-software markets such as the TV production industry.

OSCON 2010 Brendan Quinn - Ingex:bringing open source to the broadcast indust...

Brendan Quinn

How to choose the right technology or tooling in IT? A presentation by Yakup Kalin (ACA IT-Solutions). It's not easy to know which technology you should keep an eye on or which tool you can use best in a specific situation. Customers, however, expect that consultants are in line with everything going on in the market. Yakup Kalin will present various techniques to show how you can deal with this in the best possible way. Some examples of methods that will be discussed: IT Maturity: Capability Maturity Model Magic Quadrant Forrester Wave Cocomo Model Gartner Cricital Capabilities Methodology

The right tool / technology for the right job : by Yakup Kalin (ACA IT-Soluti...

ACA IT-Solutions

OpenChain @ OSPOlogy.live Sweden 2022

Shane Coughlan

Ähnlich wie Antepedia Reporter and Fossology: Updates and new challenges toward software tracking throught the whole software life cycle, Guillaume Rousseau, Antelink. (20)

Owasp_Security_Labeling_System

Open Source & Open Development

Controlling the value in software companies

Open Source Software Licence Compliance: Art or science?

Open Source vs Proprietary

Open Source Project Management

Social Code Scanning

#ATAGTR2019 Presentation "Digital Assurance for Connected World" By Supriya B...

Open Source Software: What Are Your Obligations?

Ubucon 2013, licensing and packaging OSS

Leveraging Open Source Opportunity in the Public Sector Without the Risk

Three Interviews About Static Code Analyzers

Open Source ETL

Leveraging Open Source Opportunity in the Public Sector Without the Risk

Open source

OSCON 2010 Brendan Quinn - Ingex:bringing open source to the broadcast indust...

The right tool / technology for the right job : by Yakup Kalin (ACA IT-Soluti...

OpenChain @ OSPOlogy.live Sweden 2022

Mehr von OW2

This presentation is given by Stefano Pampaloni at the RIOS Open Source Week, Nov. 2022 in Roma. Abstract: Established in 2007 as a non-profit organisation, OW2 is an independent community dedicated to promoting open source software for information systems and fostering their business ecosystems. OW2 federates 50+ organizations and 2500+ IT professionals worldwide. OW2 hosts 50+ technology Projects. RIOS is an Italian network of companies established in 2015 aiming to improve open source adoption and to build sustainable businesses around it OW2 and RIOS are working together to foster collaboration between European open-source stakeholders.

OW2 and RIOS teaming up to boost the open source impact, Nov. 2022 in Roma

OW2

The Good Governance Initiative (GGI) proposes a methodological framework to assess open-source awareness, compliance and governance in any kind of organizations, helping them to structure and improve the use of FOSS towards an OSPO. The GGI was initiated by OW2 and is developed by the OSPO Alliance. This presentation will give an overview of the initiative, its organization, roadmap, first achievements and next steps.

The Open Source Good Governance Initiative presented at RIOS OS Week, Nov. 20...

OW2

GLPi v.10, les fonctionnalités principales et l'offre cloud

OW2

Centreon: superviser le Cloud et le Legacy à partir d'une même plateforme, po...

OW2

FusionIAM : la gestion des identités et des accés open source

OW2

Connaissez-vous OW2 ? Aventure commencée en 1999 à Grenoble sur la base d'un consortium industriel dédié au middleware open source, devenu association sans but lucratif d'échelle européenne en 2006 sous le nom d'OW2, nous agissons pour la diffusion du libre dans le monde professionnel depuis plus de 20 ans. OW2 compte des adhérents de toute taille : 2.600 individuels en adhésion gratuite, et 30 institutionnels, de la TPE unipersonnelle à Orange, Microsoft ou Huawei, de l'Inria ou le Fraunhofer Fokus à la Gendarmerie Nationale ou la ville de Paris. Nos projets sont plus célèbres que nous : ASM, Centreon, Lutece, PrestaShop, Sympa ou Rocket.Chat vous diront peut-être quelque chose ? Philosophiquement, OW2 se trouve quelque part entre Eclipse et Apache : culture technique, infrastructure d'hébergement et d'assistance pour les projets, sur la ligne de crête entre l'esprit du libre et les contraintes du business, nous sommes un acteur de l'économie sociale, persuadé que l'open source est central dans une transformation sociétale nécessaire qui ne pourra se faire sans l'adhésion du monde industriel et académique. A un tournant de notre histoire, nous investissons le créneau de la qualité industrielle des projets avec notre méthodologie "Market readiness Levels", et la gouvernance de l'open-source comme membre fondateur de l'OSPO Alliance (ospo.zone) et éditeur du guide méthodologique "OSS Good Governance handbook". Ne nous y trompons pas : OW2 est un acteur éminemment politique, porteur d'une vision fondée sur la transformation du monde professionnel et de ses valeurs par le code et la coopération. Et cette présentation, avec un survol de notre histoire, adhérents, initiatives et projets, est également l'occasion d'en débattre.

OW2 Association Européenne aux racines grenobloises, transformer l'industrie ...

OW2

SFScon'20 Bringing the User into the Equation

OW2

A few years ago, Heartbleed epitomized a massive open source sustainability problem for critical parts of the internet infrastructure. The bug, which affected the popular OpenSSL cryptographic software library, notably compromised the confidentiality of 4.5 million US patient records and cost the industry an estimated $500M. It was soon revealed that the root cause of the issue was that OpenSSL was precariously understaffed. Open source sustainability became a major theme overnight. Stories of maintainer burn-out made the headlines. And tentative solutions started to emerge, most of them donation-based. In this talk we’ll explore a number of existing strategies to fund open source and make it more sustainable, from patronage to dedicated ad networks. And we’ll defend the idea that the best path to open source sustainability is to help companies understand the tangible business value they can get from contributing to open source.

Towards a sustainable solution to open source sustainability, OW2online20, Ju...

OW2

Advanced proactive and polymorphing cloud application adaptation with MORPHEM...

OW2

Presentation by Gael Blondelle, Managing Director at Eclipse Foundation. Abstract: In this talk, we will cover two complementary topics: The different Eclipse projects related to Open Source governance, like Eclipse SW360, SW360 Antenna, and Eclipse Steady, as well as the opportunity to leverage SW360 as the core of a larger Open Source governance initiative. The Eclipse IP Process that has been applied to hundreds of Eclipse projects for more than 15 years and is going through a modernization process that involves both simplification from the developer point of view, and openness to new source of trusted data like Clearly Defined.

Open Source governance and the Eclipse Foundation, OW2online, June 2020

OW2

Open source contribution policies are long, boring, overlooked documents, that generally suck. They're designed to protect the company at all costs. But in the process, end up hurting engineering productivity, and morale. Sometimes they even unknowingly put corporate IP at risk. But that's not inevitable. It's possible to write open source contribution policies that make engineers lives easier, boost morale and productivity, reduce attrition, and attract new talent. And it's possible to do so while reducing the company's IP risk, not increasing it. In this talk, we'll look at the general structure of contribution policies, examples in the wild, and tactics to make them suck less. We'll also look at how to turn these policies into self-service software, preventing the tedious email back and forth between engineering and legal in most cases and making open source contribution a breeze. Presentation by Tobbie Langel, UnLockOpen.

Open source contribution policies, OW2online, June 2020

OW2

Presentation by Jose Manrique, CEO at Bitergia. Abstract: 2020 has started intense for many countries. It's been just a few months, but the things we have lived make us feel like it's been years. Covid-19 pandemic has hit everywhere and forced many people to work from home. If you were lucky enough to be in one of these modern companies that have adopted digital transformation years ago, would that be a problem? Many people have thought it wasn't, but it has really been. And what about the rest of the software developers involved in companies not ready for remote work at all? It's been said that nothing has boosted more companies' digital transformation than covid-19. But, are their managers ready for such change? Managing software development at scale is not an easy task, and this pandemic has disrupted the way projects are being developed in many companies. During this talk, I would like to share lessons learned from open source development at scale that might help companies to adapt to these changes. But more specifically, lessons about how software development analytics help managers to understand collaborative remote work.

Software development at scale, pandemic lockdown and oss ecosystems, OW2onlin...

OW2

Presentation by Olivier Fendt, Senior Manager Open Source Software at Siemens. Abstract: The well-known OpenChain project launched in Sept 2019 a Tooling Group. The objective of this group is to realize a turn-key Open Source toolchain for Open Source Compliance, which is / can be easily integrated in the software development CI/CD pipelines. The Tooling Group uses open source principles to accomplish this, creating a meritocracy producing real world solutions for real world challenges, and sharing these results with all interested parties. The presentation gives an overview of the Tooling group its objectives, the areas of focus, the current state and future plans.

Overview of the OpenChain Reference Tooling Work Group, OW2online20, June 2020

OW2

Presentation by Nicolas Toussaint, Software Architect, Orange. Abstract: Orange and Orange Business Services have turned to full open source solutions to tackle the complex problem of respecting the open source legal compliance constraints. This talk presents the journey undertaken the past few years to build and improve the existing tooling and processes to make compliance validation possible, as well as allow overseeing progresses.

Open Source Compliance at Orange, OW2online, June 2020

OW2

Presentation by Boris Baldassari, Consultant, Castalia Solutions. Abstract: While Open Source Software has become mainstream, the understanding of its key principles, from ethics and collaboration to governance and community management, is gaining more interest and attention. There is a comprehensive volume of studies and reports backing up our individual and collective experience, yet we still cannot reliably measure these characteristics, and even less clearly define or assess them. In an attempt to build up confidence and foster maturity in this area, this talk will look at the various existing models and metrics related to OSS compliance and governance, and build upon them to propose methods and tools for their evaluation and analysis. We will discuss the requirements and essential questions to ask, offer guidelines for implementation and suggest efficient ways to present results.

Ideas, methods and tools for OSS Compliance assessment, OW2online, June 2020

OW2

Presentation by Amir Mir, TUDelft. As recent events, such as the leftpad incident and the Equifax data breach, have demonstrated, dependencies on networks of external libraries can introduce projects to significant operational and compliance risks as well as difficult to assess security implications. FASTEN introduces fine-grained, method-level, tracking of dependencies on top of existing dependency management networks. In our talk, we will present how FASTEN works on top of the Rust/Cargo and Java/Maven ecosystems.

Intelligent package management with FASTEN, OW2online, June 2020

OW2

DECODER, a Smarter Environment for DevOps Teams , OW2online, June 2020

OW2

Presentation by Hui Song, Senior Scientist, SINTEF. We would like to share our research journey towards enabling DevOps for IoT applications, and how Open Source makes the journey feasible and fun. DevOps is widely adopted for developing cloud applications, which supports developers in continuously placing software changes directly to production. As companies are including IoT and Edge devices into their IT infrastructures, supporting DevOps for IoT is a must. However, IoT challenges some fundamental assumptions behind DevOps, such as the homogeneous infrastructure and centralized governance, and therefore, breaking-through research is needed. Funded by H2020, 30 people from 12 partners crossing academia and industry gathered to solve these fundamental challenges, which results in full-stack open source tools for automatic deployment, learning-based operation and security monitoring of IoT applications, and risk management of the development process. The tools are evaluated on industrial use cases in intelligent transportation, smart building, and eHealth. The mass open source tools and communities around IoT development provides the sound foundation for this design research and the opportunities for the further exploitation of the results. In particular, we are proud of spinning off a start-up to commercialize the risk management services in the open source + SaaS model.

Enabling DevOps for IoT software development, powered by Open Source, OW2onli...

OW2

Artificial Intelligence is now smarter than ever, showing human-like abilities at complex tasks such as images classification or natural language processing. But despite its recent advances, it's still not a silver bullet. This talk will present a few challenges in the research and development of artificial intelligence that slow down its progress and adoption. In particular, problems around fairness, the training of models and how to share them will be introduced as well as possible Free Software solutions. Presentation by Vincent Lequertier, PhD Student, Lyon UNiverversity.

Upcoming Challenges in Artificial Intelligence Research and Development, OW2o...

OW2

We propose a walkthrough of current utilization of Open Source Software in capacity planning for the Orange network infrastructure. The objective of our project is to have a platform that helps engineers to carefully plan the resources available to them as well as to correlate different incidents within remote parts of the infrastructure. In order to achieve this we started using Cacti with the Spine collector which worked great, but Orange France is a very large company with many entities, each with its own governance, and so we began to see some limitations. There was a need to centralize some information from different parts in Orange France as well as to integrate the equipment capacity and load values into BigData Orange. In order to achieve this we developed the “Puits de donneés” platform completely based on Open Source Software. The visualization and statistical analysis part is handled by Grafana while the ETL runs on Apache Software Foundation products like NiFi, Zookeeper and Ambari with a storage solution from MariaDB for which we did extensive performance tuning and customization due to the large amounts of data.

Cacti and Big Data at Orange France, OW2online, June 2020

OW2

Mehr von OW2 (20)

OW2 and RIOS teaming up to boost the open source impact, Nov. 2022 in Roma

The Open Source Good Governance Initiative presented at RIOS OS Week, Nov. 20...

GLPi v.10, les fonctionnalités principales et l'offre cloud

Centreon: superviser le Cloud et le Legacy à partir d'une même plateforme, po...

FusionIAM : la gestion des identités et des accés open source

OW2 Association Européenne aux racines grenobloises, transformer l'industrie ...

SFScon'20 Bringing the User into the Equation

Towards a sustainable solution to open source sustainability, OW2online20, Ju...

Advanced proactive and polymorphing cloud application adaptation with MORPHEM...

Open Source governance and the Eclipse Foundation, OW2online, June 2020

Open source contribution policies, OW2online, June 2020

Software development at scale, pandemic lockdown and oss ecosystems, OW2onlin...

Overview of the OpenChain Reference Tooling Work Group, OW2online20, June 2020

Open Source Compliance at Orange, OW2online, June 2020

Ideas, methods and tools for OSS Compliance assessment, OW2online, June 2020

Intelligent package management with FASTEN, OW2online, June 2020

DECODER, a Smarter Environment for DevOps Teams , OW2online, June 2020

Enabling DevOps for IoT software development, powered by Open Source, OW2onli...

Upcoming Challenges in Artificial Intelligence Research and Development, OW2o...

Cacti and Big Data at Orange France, OW2online, June 2020

Kürzlich hochgeladen

Discover the innovative features and strategic vision that keep WSO2 an industry leader. Explore the exciting 2024 roadmap of WSO2 API management, showcasing innovations, unified APIM/APK control plane, natural language API interaction, and cloud native agility. Discover how open source solutions, microservices architecture, and cloud native technologies unlock seamless API management in today's dynamic landscapes. Leave with a clear blueprint to revolutionize your API journey and achieve industry success!

WSO2's API Vision: Unifying Control, Empowering Developers

WSO2

Boost Fertility New Invention Ups Success Rates.pdf

sudhanshuwaghmare1

Three things you will take away from the session: • How to run an effective tenant-to-tenant migration • Best practices for before, during, and after migration • Tips for using migration as a springboard to prepare for Copilot in Microsoft 365 Main ideas: Migration Overview: The presentation covers the current reality of cross-tenant migrations, the triggers, phases, best practices, and benefits of a successful tenant migration Considerations: When considering a migration, it is important to consider the migration scope, performance, customization, flexibility, user-friendly interface, automation, monitoring, support, training, scalability, data integrity, data security, cost, and licensing structure Next Wave: The next wave of change includes the launch of Copilot, which requires businesses to be prepared for upcoming changes related to Copilot and the cloud, and to consolidate data and tighten governance ShareGate: ShareGate can help with pre-migration analysis, configurable migration tool, and automated, end-user driven collaborative governance

Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff

sammart93

Dubai, often portrayed as a shimmering oasis in the desert, faces its own set of challenges, including the occasional threat of flooding. Despite its reputation for opulence and modernity, the emirate is not immune to the forces of nature. In recent years, Dubai has experienced sporadic but significant floods, testing the resilience of its infrastructure and communities. Among the critical lifelines in this bustling metropolis is the Dubai International Airport, a bustling hub that connects the city to the world. This article explores the intersection of Dubai flood events and the resilience demonstrated by the Dubai International Airport in the face of such challenges.

Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...

Orbitshub

Elevate Developer Efficiency & build GenAI Application with Amazon Q

Bhuvaneswari Subramani

Corporate and higher education. Two industries that, in the past, have had a clear divide with very little crossover. The difference in goals, learning styles and objectives paved the way for differing learning technologies platforms to evolve. Now, those stark lines are blurring as both sides are discovering they have content that’s relevant to the other. Join Tammy Rutherford as she walks through the pros and cons of corporate and higher ed collaborating. And the challenges of these different technology platforms working together for a brighter future.

Corporate and higher education May webinar.pptx

Rustici Software

Following the popularity of “Cloud Revolution: Exploring the New Wave of Serverless Spatial Data,” we’re thrilled to announce this much-anticipated encore webinar. In this sequel, we’ll dive deeper into the Cloud-Native realm by uncovering practical applications and FME support for these new formats, including COGs, COPC, FlatGeoBuf, GeoParquet, STAC, and ZARR. Building on the foundation laid by industry leaders Michelle Roby of Radiant Earth and Chris Holmes of Planet in the first webinar, this second part offers an in-depth look at the real-world application and behind-the-scenes dynamics of these cutting-edge formats. We will spotlight specific use-cases and workflows, showcasing their efficiency and relevance in practical scenarios. Discover the vast possibilities each format holds, highlighted through detailed discussions and demonstrations. Our expert speakers will dissect the key aspects and provide critical takeaways for effective use, ensuring attendees leave with a thorough understanding of how to apply these formats in their own projects. Elevate your understanding of how FME supports these cutting-edge technologies, enhancing your ability to manage, share, and analyze spatial data. Whether you’re building on knowledge from our initial session or are new to the serverless spatial data landscape, this webinar is your gateway to mastering cloud-native formats in your workflows.

Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME

Safe Software

MINDCTI Revenue Release Quarter One 2024

MIND CTI

Strategies for Landing an Oracle DBA Job as a Fresher

Remote DBA Services

Understanding the FAA Part 107 License ..

Christopher Logan Kennedy

Tracing the root cause of a performance issue requires a lot of patience, experience, and focus. It’s so hard that we sometimes attempt to guess by trying out tentative fixes, but that usually results in frustration, messy code, and a considerable waste of time and money. This talk explains how to correctly zoom in on a performance bottleneck using three levels of profiling: distributed tracing, metrics, and method profiling. After we learn to read the JVM profiler output as a flame graph, we explore a series of bottlenecks typical for backend systems, like connection/thread pool starvation, invisible aspects, blocking code, hot CPU methods, lock contention, and Virtual Thread pinning, and we learn to trace them even if they occur in library code you are not familiar with. Attend this talk and prepare for the performance issues that will eventually hit any successful system. About authorWith two decades of experience, Victor is a Java Champion working as a trainer for top companies in Europe. Five thousands developers in 120 companies attended his workshops, so he gets to debate every week the challenges that various projects struggle with. In return, Victor summarizes key points from these workshops in conference talks and online meetups for the European Software Crafters, the world’s largest developer community around architecture, refactoring, and testing. Discover how Victor can help you on victorrentea.ro : company training catalog, consultancy and YouTube playlists.

Finding Java's Hidden Performance Traps @ DevoxxUK 2024

Victor Rentea

Dubai, known for its towering skyscrapers, luxurious lifestyle, and relentless pursuit of innovation, often finds itself in the global spotlight. However, amidst the glitz and glamour, the emirate faces its own set of challenges, including the occasional threat of flooding. In recent years, Dubai has experienced sporadic but significant floods, disrupting normalcy and posing unique challenges to its infrastructure. Among the critical nodes in this bustling metropolis is the Dubai International Airport, a vital hub connecting the world. This article delves into the intersection of Dubai flood events and the resilience demonstrated by the Dubai International Airport in the face of such challenges.

Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf

Orbitshub

Architecting Cloud Native Applications

WSO2

Webinar Recording: https://www.panagenda.com/webinars/why-teams-call-analytics-is-critical-to-your-entire-business Nothing is as frustrating and noticeable as being in an important call and being unable to see or hear the other person. Not surprising then, that issues with Teams calls are among the most common problems users call their helpdesk for. Having in depth insight into everything relevant going on at the user’s device, local network, ISP and Microsoft itself during the call is crucial for good Microsoft Teams Call quality support. To ensure a quick and adequate solution and to ensure your users get the most out of their Microsoft 365. But did you know that ‘bad calls’ are also an excellent indicator of other problems arising? Precisely because it is so noticeable!? Like the canary in the mine, bad calls can be early indicators of problems. Problems that might otherwise not have been noticed for a while but can have a big impact on productivity and satisfaction. Join this session by Christoph Adler to learn how true Microsoft Teams call quality analytics helped other organizations troubleshoot bad calls and identify and fix problems that impacted Teams calls or the use of Microsoft365 in general. See what it can do to keep your users happy and productive! In this session we will cover - Why CQD data alone is not enough to troubleshoot call problems - The importance of attributing call problems to the right call participant - What call quality analytics can do to help you quickly find, fix-, and prevent problems - Why having retrospective detailed insights matters - Real life examples of how others have used Microsoft Teams call quality monitoring to problem shoot problems with their ISP, network, device health and more.

Why Teams call analytics are critical to your entire business

panagenda

ICT role in 21st century education and its challenges

rafiqahmad00786416

Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood

Juan lago vázquez

MS Copilot expands with MS Graph connectors

Nanddeep Nachan

Whatsapp Number Escorts Call girls 8617370543 Available 24x7 Mcleodganj Call Girls Service Offer Genuine VIP Model Escorts Call Girls in Your Budget. Mcleodganj Call Girls Service Provide Real Call Girls Number. Make Your Sexual Pleasure Memorable with Our Mcleodganj Call Girls at Affordable Price. Top VIP Escorts Call Girls, High Profile Independent Escorts Call Girls, Housewife Women Escorts Call Girl, College Girls Escorts Call Girls, Russian Escorts Call girls Service in Your Budget.

Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model

Deepika Singh

Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving

Edi Saputra

Following the popularity of "Cloud Revolution: Exploring the New Wave of Serverless Spatial Data," we're thrilled to announce this much-anticipated encore webinar. In this sequel, we'll dive deeper into the Cloud-Native realm by uncovering practical applications and FME support for these new formats, including COGs, COPC, FlatGeoBuf, GeoParquet, STAC, and ZARR. Building on the foundation laid by industry leaders Michelle Roby of Radiant Earth and Chris Holmes of Planet in the first webinar, this second part offers an in-depth look at the real-world application and behind-the-scenes dynamics of these cutting-edge formats. We will spotlight specific use-cases and workflows, showcasing their efficiency and relevance in practical scenarios. Discover the vast possibilities each format holds, highlighted through detailed discussions and demonstrations. Our expert speakers will dissect the key aspects and provide critical takeaways for effective use, ensuring attendees leave with a thorough understanding of how to apply these formats in their own projects. Elevate your understanding of how FME supports these cutting-edge technologies, enhancing your ability to manage, share, and analyze spatial data. Whether you're building on knowledge from our initial session or are new to the serverless spatial data landscape, this webinar is your gateway to mastering cloud-native formats in your workflows.

Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME

Safe Software

Kürzlich hochgeladen (20)

WSO2's API Vision: Unifying Control, Empowering Developers

Boost Fertility New Invention Ups Success Rates.pdf

Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff

Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...

Elevate Developer Efficiency & build GenAI Application with Amazon Q

Corporate and higher education May webinar.pptx

Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME

MINDCTI Revenue Release Quarter One 2024

Strategies for Landing an Oracle DBA Job as a Fresher

Understanding the FAA Part 107 License ..

Finding Java's Hidden Performance Traps @ DevoxxUK 2024

Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf

Architecting Cloud Native Applications

Why Teams call analytics are critical to your entire business

ICT role in 21st century education and its challenges

Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood

MS Copilot expands with MS Graph connectors

Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model

Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving

Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME

Antepedia Reporter and Fossology: Updates and new challenges toward software tracking throught the whole software life cycle, Guillaume Rousseau, Antelink.

1. Panel: Benefits and challenges of integrating open source components. Copyright Antelink 2013 CC BY-NC-ND 3.0 How technical solutions can help to reach legal quality Co-‐author / IPR Tracking: A methodology for Component Based and Collabora@vely Developed soCware (QualiPSo A1) Assistant professor at INRIA/Univ. Paris Diderot Co-‐founder of Antelink, INRIA spinoﬀ, single EU player developing tools Guillaume ROUSSEAU

2. Copyright Antelink 2013 CC BY-NC-ND 3.0 When can you talk about Legal Quality issue ? Lack of contradictory evidences in the event of a litigation through the software supply chain.

3. Copyright Antelink 2013 CC BY-NC-ND 3.0 When can you talk about Legal Quality issue ? Spend too much time to maintain qualified bill of materials from design to delivery over the whole software factory.

4. Copyright Antelink 2013 CC BY-NC-ND 3.0 When can you talk about Legal Quality issue ? Choose the right components as soon as the design phase, with very few information about the components and their alternatives available.

5. Copyright Antelink 2013 CC BY-NC-ND 3.0 When can you talk about Legal Quality issue ? Do not get full benefit of open source and proprietary reusable components because of missing third party components’ licenses compliance policy.

6. Copyright Antelink 2013 CC BY-NC-ND 3.0 Why do you need Tools ? Produc@vity (reduce @me) Integrity (quality of the informa@on)

7. Copyright Antelink 2013 CC BY-NC-ND 3.0 When do you have to use state of art tools to increase legal quality ? •  Audit your soCware asset (your ﬁrst BoM J) •  Set up Compliance Policy •  Provide BoM with accurate third par@es license and aSribu@on informa@on. •  Check your ability to answer support request ? •  Check copyright (who developed/owned your soCware) •  Scanner for informa@on discovery (Author metrics, copyright, license, vulnerability, …)

8. Why do you have to use tools ? •  This is the state of art, do it at your own risk if your are not using them •  Some of them are free (fossology, Oslc, Reporter free edi@on, …) Copyright Antelink 2013 CC BY-NC-ND 3.0 •  Standard like SPDX are making your life much easier (see for instance compliance table comparing policies from FSF, Eclipse, Apache found.

9. Contact www.antelink.com contact@antelink.com +33 (0)1 42 39 30 78 Copyright Antelink 2013 – Do not distribute without prior written agreement

Antepedia Reporter and Fossology: Updates and new challenges toward software tracking throught the whole software life cycle, Guillaume Rousseau, Antelink.

Empfohlen

Empfohlen

Weitere ähnliche Inhalte

Was ist angesagt?

Was ist angesagt? (20)

Andere mochten auch

Andere mochten auch (20)

Ähnlich wie Antepedia Reporter and Fossology: Updates and new challenges toward software tracking throught the whole software life cycle, Guillaume Rousseau, Antelink.

Ähnlich wie Antepedia Reporter and Fossology: Updates and new challenges toward software tracking throught the whole software life cycle, Guillaume Rousseau, Antelink. (20)

Mehr von OW2

Mehr von OW2 (20)

Kürzlich hochgeladen

Kürzlich hochgeladen (20)

Antepedia Reporter and Fossology: Updates and new challenges toward software tracking throught the whole software life cycle, Guillaume Rousseau, Antelink.