Skip to main content

Building Trust in the Supply Chain Since 2016

Our vision is a supply chain where open source is delivered with trusted and consistent compliance information. Our mission is to make that happen.


This Is Where You Will Find:

  • The ISO/IEC standard for open source license compliance programs
  • The industry standard for open source security assurance programs
  • The community that powers these standards

OpenChain ISO/IEC 5230:2020 is the International Standard for open source license compliance. This is a simple, effective standard suitable for companies of all sizes in all markets. It is developed openly by a vibrant user community and freely available to all. It is supported by free online self-certification, extensive reference material and official service provider partners.

Did You Know…

20% of German companies with over 2,000 employees have already implemented ISO/IEC 5230.

Source: Bitkom Open Source Monitor 2021

ISO/IEC 5230 Conformant Programs Announced Via Our Website


{"slides_column":"8","slides_scroll":"1","dots":"false","arrows":"false","autoplay":"true","autoplay_interval":"800","ticker":"false","speed":"500","center_mode":"true","loop":"true","rtl":"false"}

We also maintain the OpenChain Security Assurance Specification, a standard for open source security compliance. This is also a simple, effective sister specification to our license compliance specification, and it is suitable for companies of all sizes in all markets. It is expected to become an ISO/IEC standard later in 2023. You can adopt the standard today and your conformance will be valid for the ISO/IEC version as well. The first company to announce OpenChain Security Assurance Specification conformance is Interneuron in the United Kingdom.

What Do You Want To Do?









Do You Want Something Else?







Get Our Help