internet of things - dla piper/media/files/insights/... · internet of things: role of free and...
TRANSCRIPT
Mark Radcliffe, Partner, DLA Piper
Mark O’Conor, Partner, DLA Piper
Ian Skerrett, Eclipse Foundation
Mike Dolan, Linux Foundation (Allseen Alliance)
Internet of Things:Role of Free and Open Source Software
Global platform
Page 2WEST\253917478.2
Largest law firm in theworld, based in 31countries and 77 officesthroughout the Americas,Asia Pacific, Europe andthe Middle East
More than 145 DLAPiper lawyers in IPtransactions
Global Open SourcePractice
More than 550 DLAPiper lawyers ranked asleaders in their fields
OSS practice
Worldwide OSS Practice US practice led by two partners: MarkRadcliffe and Victoria Lee
Experience
Open sourcing Solaris operating system
FOSS foundations
OpenStack Foundation
PrPL Foundation
OpenSocial
Open Source Initiative
GPLv3 Drafting Committee Chair
Drafting Project Harmony agreements
WEST\253917478.2 Page 3
Linux Foundation and AllSeen Alliance
The Linux Foundation® is a 501(c)(6) nonprofit organization dedicated toenabling the Linux kernel community and protecting, defending andpromoting the adoption of Linux and open source technologies that formthe backbone infrastructure of society. The Linux Foundation hosts manyCollaborative Projects that extend the successful practices of open sourcedevelopment into technology areas beyond the Linux kernel
AllSeen Alliance is one of The Linux Foundation’s Collaborative Projects.AllSeen is a 501(c)(6) nonprofit organization dedicated to enabling thewidespread adoption of products, systems and services that support theInternet of Things through an open environment, vibrant ecosystem andthriving technical community based on the AllJoyn® open source project.
The Linux Foundation is a registered trademark of The Linux Foundation. AllSeen and AllSeen Alliance aretrademarks of AllSeen Alliance, Inc. AllJoyn is a registered trademark of AllSeen Alliance, Inc.
Page 4
Introduction to the Eclipse Foundation
Nonprofit Open Source Foundation (5.01 c6), created in 2004
220+ members, including IBM, SAP, Google, SAP, Red Hat,Bosch, Cisco, Airbus
250 different open source projects
6-8 million users
22 staff members
WEST\253917478.2 Page 5
World economic forum: IoT report
The Industrial Internet will transform the basis ofcompetition, requiring business leaders to shiftfrom a focus on products and services tobusiness outcomes. For the Industrial Internet toachieve its full potential, industry sectors willneed to collaborate more closely with technologyleaders and policy makers to put in place thestandards and conditions required to encouragefurther investment.
Paul Nanterme, Chairman and CEO of Accenture
WEST\253917478.2 Page 6
AllSeen Alliance Introduction
Mike Dolan, Senior Director of Strategic ProgramsThe Linux Foundation
WEST\253917478.2 Page 7
NOW PLAYING:
Artist: Flowers
Song: Daisy
FridgeCloud
LaundryCloud
Lighting BCloud
Speaker BCloud
Speaker ACloud
TVCloud
Lighting ACloud
Lighting CCloud
SecurityCameraCloud
LaundryApp
SecurityCamera
App
LightingC App
SpeakerB App
LightingB App
FridgeApp
TVApp
LightingA App
SpeakerA App
• A different app for every device• Integration is difficult• Devices can’t interact locally, requires an internet connection for
every device• Cloud connections abound; are they all secure? Each with their own
terms – e.g. who owns the data?• Rich user experiences (combinations) are difficult to build, if even
possible
App Overload !
AllSeen Alliance – the problem with the
Internet of Things today
WEST\253917478.2 Page 8
But ONLY if they speak the same language
당신은 내 말들려?
helloworld!
Devices that can’t connect across brands, categories, and operatingsystems will be left out
No single company covers every segment, space and platform
✗ ✗ ✗ ✗AutoHome
Consumergoodsand
appliances
IndustrialComputing
devices
Tem alguémaí?
hellworhe
100010101011
Ubiquitous connectivity promises to make
devices smart
WEST\253917478.2 Page 9
hello!
AutoHomeConsumer
goodsand
appliances
Industrial
Computingdevices
AllJoynframework
AllJoynframework
AllJoynframework
AllJoynframework
AllJoynframework
hello! hello! hello! hello!
Computingdevices
Consumergoodsand
appliances
Home Auto Industrial
AllSeen Alliance – AllJoyn framework lets
things work together
WEST\253917478.2 Page 10
GPS
GPU
DSP
GYRO
Microphone
Touchscreen
Accelerometer
Exposing smartphone APIs enabled new experiences
that no one had ever thought of before
A single protocol allowing products and apps to expose theircapabilities and interact with other devices and apps
Lock doors
Light bulbs
Garage door
Sensors
Pictures
Video
Drapes
Displays
Speakers
Clocks
Cool
Heat
TVs
The AllJoyn software framework is a collaborative open source project of the AllSeen Alliance
The AllJoyn framework exposes the capabilities of
connected devices in the much the same way
AllJoyn enabled devices describe their capabilities
via service interfaces on a virtual bus
WEST\253917478.2 Page 13
AllJoyn’s Gateway Agent provides remote access,
management and privacy controls for all AllJoyn
enabled devices and apps
WEST\253917478.2 Page 14
The problems that AllJoyn solves… in an
interoperable way
WEST\253917478.2 Page 15
Discovernearby devices
Identifyservices runningon those devices
Adaptto devices coming
and going
Spandiverse
transports
Interoperateacross OS, deviceand manufacturer
Exchangeinformation
Secureagainst bad
actors
Manageremote and local
Controldevices near and far
AllSeen Alliance - 2014 Collaboration Scorecard
Projects37 total projects
20 active
7 new
Contributions103 contributors
20+ companies
4.1M SLoCchanged sincelaunch
Jira Tickets1,600 submitted
1,250 closed
330 open or inprogress
17
“Companies will win over Internet
of Things not in the boardroom, but
on the command line. The
consortium that gets excellent code
to market first, with a community
that provides great documentation
and an inviting atmosphere, will
win. So far, only AllSeen has done
that, with code available for
download today.”
Matt Asay VP Mobile at Adobe, viareadwrite.com
Why the Internet of Things has to beopen sourced
AllSeen Alliance – over 170 members including 12
premier members
WEST\253917478.2 Page 18
+ One morenot yet
announced
AllSeen Alliance – Community members
Page 19
− 2lemetry
− ADT Security Services
− Affinegy
− AT&T Digital Life
− Audio Partnership
− Beechwoods Software
− Beijing Winner Micro Electronics
− BLACKLOUD
− Bosch
− CA Engineering
− Canary
− Carvoyant
− Changhong
− Cirrent
− Cisco
− Cloud of Things
− CoCo Communications
− Connectuity
− ControlBEAM
− Covata
− D-Link
− Dawon
− dog hunter
− Domos Labs
− Elica S.p.A.
− Euronics
− EXO U
− Faber S.p.A.
− FengLian
− FirstBuild
− Fon
− ForgeRock
− Fortune Techgroup
− FreeWings Technologies
− GEO Semiconductor
− GeoPal Solutions
− Golgi
− Gowex
− Guangdong Pisen Electronics
− Harman
− Heaven Fresh Canada
− Helium
− Honeywell
− HOUZE® Advanced Building Science
− HTC
− Hubble
− iControl Networks
− iGloo Software
− iiNet
− Imagination Technologies
− Innopia Technologies
− INSTEON
− Inteno Broadband Technology AB
− IOOOTA
− ISI Technologies
− Kii
− Kitu Systems
− Legrand Group
− Lenovo
− LeTV
− LG Uplus
− Lhings
− LIFX
− LightFreq
− Lite-On
− Local Motors
− Lumen Cache
− M2Communication
− MachineShop
− MobilityLab LLC
− Modacom
− Musaic
− Muzzley
− NETGEAR
− Octoblu
− Organic Response
− Patavina Technologies
− People Power Company
− Personal Air Quality Systems(PAQS)
− Ping Identity
− Playtabase
− POWERTECH
− Quanta Computer
− Razer
− Red Bend Software
− Resin.io
− Sears Brand Mgmt..Corporation
− Seed Labs
− Shenzhen FenglianTechnology Co
AllSeen Alliance – Community members continued
Page 20
− Shenzhen H&T Home Online NetworkTechnology Co
− Sproutling
− Symantec
− TCL Corporation
− Tellient
− The Sprosty Network
− Things.Expert
− ThroughTek
− Trend Micro
− Tuxera
− Two Bulls
− Umbrela
− Universal Devices
− Vedams
− VeriSign, Inc.
− Vestel Group
− Waygum.io
− Weaved
− Wireless Things
− WiSilica
− wot.io
ECLIPSE IOT
Eclipse IoT Introduction
Ian Skerrett
@ianskerrett
Open Source IoT Building Blocks
New and ExistingDevices
IoT GatewaysNetwork/Wireless
Services Backend Systems
Open Source Technology to Connect and Manage
WEST\253917478.2Page 22
Eclipse Foundation: building blocks for open IoT stack
WEST\253917478.2 Page 23
Connectivity- MQTT- CoAP- LWM2M
IoT gateway services- Remote management- Application management
IoT applications
IoT solution frameworks- Home automation- SCADA- OM2M
Open and Commercial Hardware
Open standards
Page 24
Mosquitto
CoAP Californium
LWM2M
IoT frameworks
Page 25WEST\253917478.2
IoT Gateway Framework
Integration framework for home automation
Integration framework for SCADA systems
Open IoT Stack
Eclipse Foundation: commercial and open IoT
ecosystem
WEST\253917478.2 Page 26
Where software is hot, OSS is hot
WEST\253917478.2 Page 27
CLOUD/VIRTUALIZATION
CONTENTMGMT
MOBILE SECURITY COLLABORATION NETWORKMGMT
SOCIALMEDIA
3D PRINTING ANALYTICS ANDBUSINESS
INTELLIGENCE
DRONES GAMING ERP
63%
57%53% 51%
49% 48%46%
27% 26%
13% 12%10%
OSS grows as % of code
WEST\253917478.2 Page 28
2007 2012 2017
5%
30%
More % ???
Source: IDC Survey of G2000Source: Black Duck audit results
By 2016, at least 95% of IT organizations willleverage nontrivial elements of open-sourcesoftware technology in their mission-critical ITportfolios, including cases where they might not beaware of it – an increase from 75% in 2010.
Source: Gartner, 2014
Basic legal issues
Intellectual property rights
Copyright
Protects works of authorship such as software, documentation, musicand movies
Exclusive rights Distribute
Modify
Reproduce
Public display/public performance
Patents
Protects inventions, such as software, hardware and automobileswhich are useful, non-obvious and novel
Exclusive rights (negative right) Make
Use
Sell
WEST\253917478.2 Page 29
WEST\21689961v1 Page 30
Basic legal issues continued
Trademarks
Word, symbol, device, sound or smell which identifies a product ascoming from a certain source and as being of a certain level of quality
Prevent use of confusingly similar marks
Examples: Linux, Apache (word), Apache (feather), OpenStack (word)
Article II – Sale of goods from airplanes to automobiles tosoftware
Warranties
Express
Implied
Remedies: consequential damages
Source of the funny language in licenses merchantability
WEST\253917478.2 Page 30
Types of open source licenses:
Restrictive, permissive, other
Restrictive (aka Copyleft, reciprocal)
Requires licensor to make improvements or enhancements available under sameterms
Example is the GPL: licensee must distribute work based on the program(derivative works) under the terms of the GPL
Hybrid
Requires licensor to make limited improvements or enhancements under the sameterms
Example is the MPL: licensee must distribute modified files under MPL
Permissive
Modifications/enhancements may remain proprietary
Distribution in source code or object code permitted provided copyright notice andliability disclaimer are included and contributors’ names are not used to endorseproducts
Examples: Berkeley Software Distribution (BSD), Apache Software License
Miscellaneous: Other: Lucent, zlib/libpng
WEST\253917478.2 Page 31
The GNU General Public License
(GPL)
GPLv2 first published in 1991 (final version of GPLv3published 6/29/2007)
Key Terms of GPLv2
Right of customers to modify and distribute modification underGPL
Non-exclusive
Obligation to distribute (can charge but not pass through thisobligation)
Any work based on the program is subject to GPL
Must include source code
No explicit patent license
Automatic termination
WEST\253917478.2 Page 32
The updated BSD License
Copyright (c) <YEAR>, <OWNER>
All rights reserved.
Redistribution and use in source and binary forms, with or without modification, are permitted providedthat the following conditions are met:
Redistributions of source code must retain the above copyright notice, this list of conditions, andthe following disclaimer
Redistributions in binary form must reproduce the above copyright notice, this list of conditions, andthe following disclaimer in the documentation and/or other materials provided with the distribution
Neither the name of the <ORGANIZATION> nor the names of its contributors may be used toendorse or promote products derived from this software without specific prior written permission
THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THEIMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSEARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BELIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY ORCONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OFSUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESSINTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER INCONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THEPOSSIBILITY OF SUCH DAMAGE.
WEST\253917478.2 Page 33
Collaborative projects
Eclipse Foundation
Eclipse Paho - MQTT client libraries https://eclipse.org/paho/Eclipse Kura - IoT gateway https://eclipse.org/kura/Eclipse Leshan - Implementation of Lightweight M2M standard fordevice management
Linux Foundation
Allseen Alliance – IoT platform https://allseenalliance.org/
IoTivity – IoT Framework https://www.iotivity.org/
Mosaiq (March, 2015): ABB, Bosch, Cisco Joint Venture forsmart home
DeviceHive Alliance (May, 2015): Canonical, GE, Microsoft,DataArt, Acer for predictive maintenance for the Industrial IoT
WEST\253917478.2 Page 34
Key Issues in using/joining OSS Project
Culture of OSS Project
Culture of company (particularly with respect to OSScontributions)
Governance of OSS project
Run by single person
Run by single company
Run by multiple companies
Type of OSS license
Copyleft
Permissive
WEST\253917478.2 Page 35
OSS as a competitive advantage
Move your software project to a foundation to ensurecommunity support and broader adoption
Example: Alljoyn and Linux Foundation
Use OSS as a base for commercial product (depends on typeof license) with OSS developing necessary parts which do notprovide commercial advantage
Example: OpenStack
Collaborations
Mosaiq
DeviceHive Alliance
Provide code under OSS license and commercial license
Example: MySQL
WEST\253917478.2 Page 36
Supply chain: Mix of open source and other code
WEST\253917478.2 Page 37
OSS Projects
End User
Components of an open source policy
Published policy
Created via cross functional team
Organization is educated on the policy
Open source process owner
Keeps the wheels running
Grant certain types of approvals
Approval processes
Component review and approval
Sensitive to use: internal/external/products
License review and approval
Release plan review and approval
WEST\253917478.2 Page 38
Components of an open source policy continued
Monitoring and tracking process
Component verification
Security notifications
Component upgrade notifications
Application to contractors/outsource vendors
Obligation verification process
Ensure using approved components and
Meeting the license and business obligations
Current reporting for responsive due diligence request
WEST\253917478.2 Page 39
Managing open source software
Define criteria for approved software
Licenses
Use (internal/product/website)
Sources
Support
Other
Define criteria for unapproved software
Scope of application: internal development, independent contractor,outsource vendors, M&A
Define conditions for participating in the open source softwaredevelopment
Employee education
No compliance without education
WEST\253917478.2 Page 40
Open source compliance
Define how development teams and other functions
Search, select, approve, track, validate, track and monitor
Inbound approval processes
Code from internal teams, external sources
Outbound compliance processes
Distributed code
Create a baseline of your code
Prioritize
Perform code analysis
Plan remediation
Document the origins of the code base
Determine all components and licenses in use
Verify usage is approved
Create a catalogue of approved components and licenses
Validation processes
WEST\253917478.2 Page 41
Conclusion
OSS is expected, but governance is very important
OSS critical for projects as large as IoT
Large and small collaborative projects
Making good choices with OSS means evaluating the licenseobligations in the context of the business model as well as thecode
Need to manage use of open source (other third-party code)
WEST\253917478.2 Page 42
Presenters
Mark Radcliffe, Partner, DLA Piper
Mark.O’Conor, Partner, DLA Piper
Ian Skerrett, Eclipse Foundation
Mike Dolan, Linux Foundation (Allseen Alliance)
WEST\253917478.2 43