commercieel gaan met je open source project
TRANSCRIPT
![Page 1: Commercieel gaan met je open source project](https://reader036.vdocument.in/reader036/viewer/2022062406/55c35d52bb61eb6e6f8b463a/html5/thumbnails/1.jpg)
Use Case:Commercieel gaan met je open source project,
hoe doe je dat?
28 Mei 2015, NLUUG
[email protected] Engelfriet
Michael [email protected]
Note:This talk is about how to create a business around open source software. The title is Dutch, the slides in English.
Dutch law rules are used in this presentation. Consult a lawyer for your own situation.
![Page 2: Commercieel gaan met je open source project](https://reader036.vdocument.in/reader036/viewer/2022062406/55c35d52bb61eb6e6f8b463a/html5/thumbnails/2.jpg)
Michael Boelen
● Security
● Open source○ Rootkit Hunter (malware)
○ Lynis (security)
● Blog: linux-audit.com
2
![Page 3: Commercieel gaan met je open source project](https://reader036.vdocument.in/reader036/viewer/2022062406/55c35d52bb61eb6e6f8b463a/html5/thumbnails/3.jpg)
Arnoud Engelfriet
● IT lawyer
● Open source specialist
● blog.iusmentis.com
3
![Page 4: Commercieel gaan met je open source project](https://reader036.vdocument.in/reader036/viewer/2022062406/55c35d52bb61eb6e6f8b463a/html5/thumbnails/4.jpg)
Use Case: Lynis
4
![Page 5: Commercieel gaan met je open source project](https://reader036.vdocument.in/reader036/viewer/2022062406/55c35d52bb61eb6e6f8b463a/html5/thumbnails/5.jpg)
Lynis
● 2007
● Security scanner
● Linux / Unix
5
![Page 6: Commercieel gaan met je open source project](https://reader036.vdocument.in/reader036/viewer/2022062406/55c35d52bb61eb6e6f8b463a/html5/thumbnails/6.jpg)
The Idea: Lynis++
6
![Page 7: Commercieel gaan met je open source project](https://reader036.vdocument.in/reader036/viewer/2022062406/55c35d52bb61eb6e6f8b463a/html5/thumbnails/7.jpg)
Start
● 2013
● Community
● Business
7
![Page 8: Commercieel gaan met je open source project](https://reader036.vdocument.in/reader036/viewer/2022062406/55c35d52bb61eb6e6f8b463a/html5/thumbnails/8.jpg)
Build a Business
Easy!
● CoC/VAT
● Website
● Get customers
8
![Page 9: Commercieel gaan met je open source project](https://reader036.vdocument.in/reader036/viewer/2022062406/55c35d52bb61eb6e6f8b463a/html5/thumbnails/9.jpg)
Build a Business
Reality...
● Customers
● Time
● Responsibilities
9
![Page 10: Commercieel gaan met je open source project](https://reader036.vdocument.in/reader036/viewer/2022062406/55c35d52bb61eb6e6f8b463a/html5/thumbnails/10.jpg)
Customer Segments
Small companies:
● Detection
● Guidance
● Good feeling
10
![Page 11: Commercieel gaan met je open source project](https://reader036.vdocument.in/reader036/viewer/2022062406/55c35d52bb61eb6e6f8b463a/html5/thumbnails/11.jpg)
Customer Segments
Big companies:
● Reporting
● Save time
● Compliance
11
![Page 12: Commercieel gaan met je open source project](https://reader036.vdocument.in/reader036/viewer/2022062406/55c35d52bb61eb6e6f8b463a/html5/thumbnails/12.jpg)
Bonus Challenge: Community
● Usage
● Nessus / Tripwire
● Features
12
![Page 13: Commercieel gaan met je open source project](https://reader036.vdocument.in/reader036/viewer/2022062406/55c35d52bb61eb6e6f8b463a/html5/thumbnails/13.jpg)
SolutionCommunity Customers
Lynis Lynis
Central management
(data export) Reporting / Compliance
(some plugins) Additional plugins
(basic help) Hardening snippets
(best effort support) Support
13
![Page 14: Commercieel gaan met je open source project](https://reader036.vdocument.in/reader036/viewer/2022062406/55c35d52bb61eb6e6f8b463a/html5/thumbnails/14.jpg)
Lynis Enterprise
● Happy community
● Business value
1 + 1 = 3!
14
![Page 15: Commercieel gaan met je open source project](https://reader036.vdocument.in/reader036/viewer/2022062406/55c35d52bb61eb6e6f8b463a/html5/thumbnails/15.jpg)
Examples
15
![Page 16: Commercieel gaan met je open source project](https://reader036.vdocument.in/reader036/viewer/2022062406/55c35d52bb61eb6e6f8b463a/html5/thumbnails/16.jpg)
Example
Ownership
● My name or company?
● Contributors?
16
![Page 17: Commercieel gaan met je open source project](https://reader036.vdocument.in/reader036/viewer/2022062406/55c35d52bb61eb6e6f8b463a/html5/thumbnails/17.jpg)
Copyright Owner
17
● Actual creator
● Employer
● Freelancer
● Assignment only by written and signed instrument
![Page 18: Commercieel gaan met je open source project](https://reader036.vdocument.in/reader036/viewer/2022062406/55c35d52bb61eb6e6f8b463a/html5/thumbnails/18.jpg)
Copyright Assignment
18Rb. Den Haag 27 juni 2007, IEF 4262
![Page 19: Commercieel gaan met je open source project](https://reader036.vdocument.in/reader036/viewer/2022062406/55c35d52bb61eb6e6f8b463a/html5/thumbnails/19.jpg)
Assignment or Contributor License?
Assignment:● All in one hand● Easy to relicense● Requires trust from
contributors● Requires managing
paper with signatures
19
Contributor license:● Contributor retains
ownership● No relicensing without
permission● Easier to contribute
![Page 20: Commercieel gaan met je open source project](https://reader036.vdocument.in/reader036/viewer/2022062406/55c35d52bb61eb6e6f8b463a/html5/thumbnails/20.jpg)
Example
Liability
● Snippet
● Bad advice
● Internationally
20
![Page 21: Commercieel gaan met je open source project](https://reader036.vdocument.in/reader036/viewer/2022062406/55c35d52bb61eb6e6f8b463a/html5/thumbnails/21.jpg)
Liability● OSS license protects you
● Negotiate limitation in commercial license
● Consider liability insurance
● Use GTC for professional advice
21
![Page 22: Commercieel gaan met je open source project](https://reader036.vdocument.in/reader036/viewer/2022062406/55c35d52bb61eb6e6f8b463a/html5/thumbnails/22.jpg)
Example
EULA / license
● Lynis: GPL
● Enterprise: SaaS solution
● Enterprise: On-premise version
22
![Page 23: Commercieel gaan met je open source project](https://reader036.vdocument.in/reader036/viewer/2022062406/55c35d52bb61eb6e6f8b463a/html5/thumbnails/23.jpg)
Example
Service providers
● White label
● Dual licensing?
23
![Page 24: Commercieel gaan met je open source project](https://reader036.vdocument.in/reader036/viewer/2022062406/55c35d52bb61eb6e6f8b463a/html5/thumbnails/24.jpg)
Proprietary License● EULA: Standard license for end users, support
maybe/maybe not included● TOS: Standard license for SaaS
● Enterprise license: large corporations,includes support & service levels
➔ Why is paid license more attractive?24
![Page 25: Commercieel gaan met je open source project](https://reader036.vdocument.in/reader036/viewer/2022062406/55c35d52bb61eb6e6f8b463a/html5/thumbnails/25.jpg)
Proprietary License● License scope: per user, per company?● Payment structure● Audit rights● Limitation of liability● Indemnification● Term & termination
25
![Page 26: Commercieel gaan met je open source project](https://reader036.vdocument.in/reader036/viewer/2022062406/55c35d52bb61eb6e6f8b463a/html5/thumbnails/26.jpg)
OSS License ChoicesOpen source can be used commercially!
Goal:Make closed version more attractive for businesses than open version
26
![Page 27: Commercieel gaan met je open source project](https://reader036.vdocument.in/reader036/viewer/2022062406/55c35d52bb61eb6e6f8b463a/html5/thumbnails/27.jpg)
OSS License Choices● GPLv3: the Big Bad, full copyleft
● AGPLv3: the SaaS Big Bad
● LGPL/Mozilla: limited copyleft
● BSD: no copyleft, free reuse
27
![Page 28: Commercieel gaan met je open source project](https://reader036.vdocument.in/reader036/viewer/2022062406/55c35d52bb61eb6e6f8b463a/html5/thumbnails/28.jpg)
Example
NDA signing
● Financial company in US
● Sign their NDA
● No NDA = No Business
28
![Page 29: Commercieel gaan met je open source project](https://reader036.vdocument.in/reader036/viewer/2022062406/55c35d52bb61eb6e6f8b463a/html5/thumbnails/29.jpg)
NDA Signing● Single- or double-sided?● Definition of Authorized Purpose● Definition of Confidential Information● Ownership of IP● Obligation to negotiate?
Always review!29
![Page 30: Commercieel gaan met je open source project](https://reader036.vdocument.in/reader036/viewer/2022062406/55c35d52bb61eb6e6f8b463a/html5/thumbnails/30.jpg)
Example
Partnerships
● Company in different country
● Wants to be a partner
● How to define contracts?
30
![Page 31: Commercieel gaan met je open source project](https://reader036.vdocument.in/reader036/viewer/2022062406/55c35d52bb61eb6e6f8b463a/html5/thumbnails/31.jpg)
Partner Agreement
Affiliate● Brings in leads for a fee
● You own the customer
● How to handle lead quality?
31
Reseller● Sells licenses, pays a
fee/percentage
● Who handles support?
● What if customer does not pay to reseller?
![Page 32: Commercieel gaan met je open source project](https://reader036.vdocument.in/reader036/viewer/2022062406/55c35d52bb61eb6e6f8b463a/html5/thumbnails/32.jpg)
Example
Investors
● What to share?
● What if they offer €10M?
32
![Page 33: Commercieel gaan met je open source project](https://reader036.vdocument.in/reader036/viewer/2022062406/55c35d52bb61eb6e6f8b463a/html5/thumbnails/33.jpg)
Investors● Signing NDA or not?
● Due diligence
● Letter of intent
(this is where you really need a lawyer)
33
![Page 34: Commercieel gaan met je open source project](https://reader036.vdocument.in/reader036/viewer/2022062406/55c35d52bb61eb6e6f8b463a/html5/thumbnails/34.jpg)
Questions?
34
![Page 35: Commercieel gaan met je open source project](https://reader036.vdocument.in/reader036/viewer/2022062406/55c35d52bb61eb6e6f8b463a/html5/thumbnails/35.jpg)
More Information
Arnoud Engelfriet
[email protected]@ictrecht
35
Michael Boelen
[email protected]@mboelen