NCSOFT is the first global game company to formally announce conformance with ISO/IEC 5230:2020, the International Standard for open source license compliance. It is the second company in Korea to announce conformance to a version of the OpenChain specification after LG Electronics. This historic development underlines the global reach and value of the standard.

ISO/IEC 5230 is maintained by the OpenChain Project as OpenChain 2.1 and edited for ISO via the Joint Development Foundation OpenChain Working Group. ISO/IEC 5230 is supported by Arm, BMW CarIT, Bosch, Cisco, Comcast, Facebook, Fujitsu, Google, Hitachi, Microsoft, MOXA, OPPO, Panasonic, Qualcomm, Siemens, Sony, Toshiba, Toyota, Uber and Western Digital as governing board members, and a wide community of companies across three continents.

“The OpenChain Project has a long history in Korea and our local work group has provided great support to the project as we have grown,” says Shane Coughlan, OpenChain General Manager. “The announcement by NCSOFT today is a superb example of how companies can improve their processes to align with other companies across the market. It makes open source license compliance faster, more effective and more efficient.”

About NCSOFT

NCSOFT is a premiere digital entertainment company and global publisher with worldwide locations and more than 4,000 employees focused on bringing extraordinary games to life for millions of fans around the world. Established in 1997 and headquartered in Seoul, South Korea, we quickly became a key leader in online games. Best known for critically acclaimed franchises including Lineage, Aion, Guild Wars, and Blade & Soul, NCSOFT is also one of the world’s top mobile developers with Lineage 2M occupying the #1 grossing revenue slot on Google Play. Our core goal is making people in this world happier by delivering games that entertain a globally connected audience has remained the same. Our culture is innovative, creative, collaborative and impactful, and we are passionate about creating the best gaming experiences for our players. https://kr.ncsoft.com/en/index.do

About the OpenChain Project

OpenChain began when a group of open source compliance professionals met in a conference lounge and chatted about how so much duplicative, redundant open source license compliance work was being done inefficiently in the software supply chain simply. They realized that while each company did the same work behind the scenes in a different manner the output for downstream recipients could not realistically be relied on because there was no visibility into the process that generated the output.

The answer the early principles of this discussion arrived at was to standardize open source compliance, make it transparent and build trust across the ecosystem. The project began as outreach to the community with the idea of a new standard for open source license compliance with slides titled, “When Conformity is Innovative.” A growing community quickly recognized the value of this approach and contributed to the nascent collaboration soon named The OpenChain Project.

Free self-certification for OpenChain 2.1 (ISO/IEC 5230) is now available in Chinese (Simplified and Traditional), German, Japanese and Korean on the OpenChain Project website.

This release is part of our on-going effort to help companies of all sizes and in all markets adopt the International Standard for open source license compliance.

Begin Your Journey

• https://certification.openchainproject.org/

The OpenChain Korea Work Group Meeting #8 featured an excellent schedule of presentations to end the year. You will find everything from SCA analysis to reviews of various aspects of Hyundai and Kakao’s work in the compliance space. A big thanks to Haksung and Soim for a lot of work organizing and editing everything, and a huge thanks to the presenters and community members who made this a wonderful event.

Introductions and Update

Hyundai’s Open Source Governance System

Trends in Software Component Analysis (SCA)

Kakao’s Olive System

The fifth meeting of the OpenChain China Work Group took place on December 7th. Big thanks to Chloe at Huawei and Kris at OPPO for providing information and updates!

Key Items

• OPENATOM, the new foundation for open source in China
• The new copyleft variant of the Mulan license, joining the pre-existing permissive license.

In 2021 the OpenChain China Work Group will switch to using Mandarin in meetings. This is the ideal English-language meeting to get an introduction to the type of topics covered.

OpenChain 2.1 self-certification is available through our online web app from today, December 7th 2020. This is in advance of the release of ISO/IEC 5230:2020, currently scheduled for December 14th according to the ISO database.

Please note that OpenChain 2.1 is functionally identical to both OpenChain 2.0 and ISO/IEC PRF 5230 (proof of international standard, soon to be formally published as ISO/IEC 5230:2020). If you conform to one, you conform to the other.

Self-Certify For Free

• https://certification.openchainproject.org/

Review the OpenChain 2.1 Specification

• https://github.com/OpenChain-Project/Specification/blob/master/Official/en/2.1/openchainspec-2.1.pdf

Disclaimer

Please note that our main outreach for OpenChain 2.1 and ISO/IEC 5230:2020 will occur after December 14th, the date of publication marked in the ISO database. If you are an early adopter and have suggestions for improvement or any errors to report in the specification document or self-certification questionnaire please report them to info@openchainproject.org.

OpenChain Education Work Group Meeting #4 focused on practicalities. The team is getting ready to produce a free online training course in collaboration with LF Training. It will be hosted on edX and the source will also be available as public domain (CC-0). Get involved via the mailing list to learn more and lend a hand.

OpenChain Education Mailing List

• https://lists.openchainproject.org/g/education

This advent calendar has been created by our Japanese Work Group as part of their community outreach. We hope you enjoy their recap of compliance topics to end the year.

（日本語は下にあります）

Introduction

Hello. If this is your first visit, nice to meet you. I think it is most likely your second time reading my article this December, right?
As the second day of OpenChain Japan Advent Calendar, today I will write about the OpenChain Specification, which is the main theme of this year.
I would like to skip my self introduction today because of my continuous posts, but if you are interested in that, please do read this.

Background (Issues in Software Supply Chains)

These days, OSS is essential for software development. It is even common to use hundreds to thousands of OSS components in one product or service. To develop software with advanced features by one single company has became very difficult, so a lot of companies have cooperated with each other and built software supply chains.
In a software supply chain, once an inappropriate use of OSS or an insufficient delivery of OSS license information occurs, it affects the entire supply chain. It comes to be claimed by the copyright holder or it is prohibited to distribute products.
In this situation, it is required to take control of problems at the upstream of the supply chain.

About OpenChain

To deal with those issues, the Open Chain Project has built an OSS compliance standard for every organization or company in supply chains to do things that they should do, build trust with each other, and deliver every necessary need (e.g. source code, license or documents).
One of the most important activities of the OpenChain Project is development and promotion of Open Chain Specification. The OpenChain Specification defines inflection points in business workflows where a compliance process, policy or training should exist to minimize the potential for errors and maximize the efficiency of bringing solutions to market. It can be used as a requirement for organizations to do OSS license compliance properly.

About OpenChain Specification

As of December this year, the latest version of OpenChain Specification is version 2.1. It is available at version 2.1.

The updated history of OpenChain Specification is below:

version	update date
version 1.0	October 2016
version 1.1	April 2017
version 1.2	April 2018
version 2.0	April 2019
version 2.1(latest)	December 2020

The contents of the latest version of OpenChain Specification is below:

Contents
Foreword
Introduction
1. Scope
2. Terms and definitions
3. Requirements
Appendix A(informative)

The key contents of Specification is written in chapter 3. From tomorrow, OpenChain Japan members will explain the contents of each requirement and related topics in turns.

The Next Topic is…

Osaki-san will explain the topics around OpenChain Specificatoin as an ISO Standard, the biggest news of this year. 
See you tomorrow!!!

はじめに

こんにちは。あるいは、はじめまして。たぶんかなりの確率で、二度目ですね。
OpenChain Japan Advent Calendar 2020の2日目は、今年のメインテーマであるOpenChain仕様についてお届けします。
本日は連投のため自己紹介はスキップしますが、もし読んでくださるのであれば、こちらをご参照くださいませ。

背景(ソフトウェアサプライチェーンが抱える課題)

昨今のソフトウェア開発においては、OSSの利活用はもはや当たり前になっており、一つの製品・サービスの開発に数百から数千個のOSSコンポーネントが使われることもあります。また、ソフトウェアの高機能化に合わせて分散開発も一般化しており、一つの製品の開発において複数の企業が複雑に関連しあうサプライチェーンが構築されています。
サプライチェーンにおいて、ひとたびOSSの不適切な利用やライセンス情報の連携不足が発生すると、その影響はサプライチェーン全体に及び、第三者やOSSの著作権者からの指摘を受けたり、最終製品が出荷できなくなったりすることも考えられます。このような状況において、サプライチェーンの上流で問題を把握し、対策を講じることが求められています。

OpenChainについて

このような課題に対して、サプライチェーンを構成する企業・団体それぞれがすべきことを的確に実施し、相互に信頼関係を構築し、互いに適切な情報や必要なソースコード等の素材の受け渡しをしっかりと行うことのできる文化を醸成しようとしているのが、OpenChainプロジェクトです。
OpenChainプロジェクトの活動の一つに、OpenChain仕様の策定と普及があります。OpenChain仕様では、ソリューションを市場に投入する効率を最大化するために、コンプライアンス・プロセス、ポリシー、トレーニングを行うビジネスワークフローのインフレクションポイントを定義しており、組織がOSSライセンスコンプライアンスを適切に実行するための要件として活用できます。

OpenChain仕様について

2020年12月現在のOpenChain仕様の最新バージョンはversion 2.1で、詳しくはOpenChain仕様バージョン2.1から参照できます。

OpenChain仕様はこれまで、下記の通り更新されてきています。

バージョン名称	改訂時期
version 1.0	2016年10月
version 1.1	2017年4月
version 1.2	2018年4月
version 2.0	2019年4月
version 2.1(最新)	2020年12月

最新版のOpenChain仕様は、下記のような構成になっており、要件は3. Requirementsに記載されています。

Contents
Foreword
Introduction
1. Scope
2. Terms and definitions
3. Requirements
Appendix A(informative)

明日以降は、OpenChain Japanのメンバーが交代で、個々のRequirementsの解説と関連するトピックスについて投稿します。

明日のテーマは・・・

明日は、今年の大ニュースOpenChain仕様のISO国際標準化について、大崎さんが解説してくれます。
では明日の記事をお楽しみに！！

This advent calendar has been created by our Japanese Work Group as part of their community outreach. We hope you enjoy their recap of compliance topics to end the year.

（日本語は下にあります）

Introduction

Hello. If this is your first visit, nice to meet you. Thank you very much for your attention to this article.
Welcome to OpenChain Japan WG Advent Calendar 2020!!
We, OpenChain Japan WG, is a Japanese community whose activities involve Open Source Software(OSS) compliance.
Last year we wrote various topics about our activities as a self introduction of OpenChain Japan WG. This year, as OpenChain Advent Calendar 2020, we will deliver to you a series of 25 articles focusing on the OpenChain Specification cerebrating that OpenChain Specification was officially registered as an International Organization for Standardization(ISO).
And we will write every article both in Japanese and English and deliver them to everyone in the world. (It is also useful for your English/Japanese learning!)
We would be very happy if you became a little interested in our activities and the importance of OSS compliance from reading our articles. I hope you like it!!

About me

I am Ayumi Watanabe of OpenChain Japan WG.　I’m an OSS management consultant based in Tokyo, Japan. My favorite OSS license is Beerware License.
I’m a member of Planning SWG, Promotion SWG and Tooling SWG in OpenChain Japan WG.

About OpenChain

Openchain is one of the official projects of the Linux Foundation. Its vision is “a supply chain where open source is delivered with trusted and consistent compliance information”. OpenChain maintains the International Standard for open source compliance. This allows companies of all sizes and in all sectors to adopt the key requirements of a quality open source compliance program. This is an open standard and all parties are welcomed to engage with our community, to share their knowledge, and to contribute to the future of our standard.

The core of OpenChain：
1. Specification, which defines a set of requirements every quality compliance program must satisfy
2. Conformance, which allows organizations to display and promote their adherence to these requirements
3. Curriculum, which provides the educational foundation for OSS processes and solutions, whilst meeting a key requirement of the specification

About Japan WG

In OpenChain Japan WG, we share our issues and solutions with each other, and discuss issues about OSS compliance in Japanese. We have variety of sub work groups in OpenChain Japan WG, e.g. Planning, Tooling, Promotion, FAQ, Leaflet, Education, License Info SWG. Every SWG are all very active.
OpenChain Japan WG is one of the regional Work Groups of OpenChain. It started in 2017. Now over 200people from over 70 companies are our members. We always welcome your joining! 

The Next Topic is…

In the next article, I will write about OpenChain Specification which is the main theme of this year. I believe it was 2020’s biggest news of OSS compliance that OpenChain Specification was officially registered as an ISO standard.
See you tomorrow!!

はじめに

こんにちは。あるいは、はじめまして。
OpenChain Japan WGのアドベントカレンダー2020へようこそ！
私たちOpenChain Japan WGは、OSS(Open Source Software)のコンプライアンスに関する活動をしている日本のコミュニティです。
今年は、昨年に引き続き2年目のアドベントカレンダーです。昨年は、OpenChain Japan WGの自己紹介として、私たちの活動について色々書かせていただきましたが、今年はOpenChain仕様がISO国際標準に認定された記念として、OpenChain仕様にフォーカスした25日間をお届けしたいと思います。
また、日本から世界へ！をキーワードに、海外のエンジニアの皆さんにも読んでいただけるよう、今年は全日程、日本語と英語で記載します。(英語を勉強中の皆さんの練習にもお使いいただけます！)
このアドベントカレンダーを通して、私たちの活動やOSSコンプライアンスの重要性に興味を持っていただき、参加したいなと思っていただけるようになれば幸いです。

自己紹介

OpenChain Japan WGの渡邊歩です。OSS活用に関するコンサルをしています。好きなライセンスは、Beerware Licenseです。
OpenChain Japan WGでは、Planning SWGとPromotion SWG、Tooling SWGで活動しています。

OpenChainについて

OpenChainは、Linux Foundationの公式プロジェクトのひとつで、「OSSが信頼性と一貫性のあるコンプライアンス情報とともに提供される、ソフトウェアサプライチェーンを実現すること」をビジョンとし、組織がOSSのライセンスコンプライアンスプログラムを構築するための指針を整備し提供しているプロジェクトです。
OpenChainの3本の柱：
1. 仕様(Specification) ： 組織内に確立するべきコンプライアンスプログラムの要件を定義したもの
2. 適合(Conformance) ： 組織が仕様を満たしていることを認証する仕組み
3. 教育(Curriculum) ： 仕様の要求事項のひとつである教育プログラムに活用できる資料

Japan WGについて

OpenChain Japan WGは、日本で活動するOpenChainのワーキンググループで、OSSコンプライアンスに関する課題や解決策について日本語で議論や情報交換を行っています。Japan WGの中には更にPlannning, Tooling, Promotion, FAQ, リーフレット, 教育資料, ライセンス情報など、たくさんのサブワークグループがあり、それぞれが活発に活動しています。
OpenChain Japan WGの活動はOpenChain初のリージョナルSWGとして2017年にスタートし、今では70社、200名以上の人々が参加しています。私たちの活動に興味のある方はいつでも、参加お待ちしています！

明日のテーマは・・・

明日は、今年のアドベントカレンダーのメインテーマである「OpenChain仕様」について説明します。
OpenChain仕様がISO国際標準に認定されたことは、OSSコンプライアンス関連の2020年の最大のニュースだったと思います。
では明日の記事をお楽しみに！！

Our regular bi-weekly webinar will cover an exciting topic at 9am Pacific / 5pm UK / 6pm CET on Monday the 7th of December.

We will be hearing from Michael G. Poe, a newcomer to the world of Open Source Compliance and current Sales Manager with FossID.  Michael will share his thoughts on his surprising journey from consumer products to software, and how the underlying principles of the open source community have enabled him along the way.  

Michael will also touch on what he believes can be some of the challenges to the frictionless adoption of Open Chain conformance. And lastly, based on his experiences and learning agenda thus far, what are some areas that can be improved when it comes to Open Source, Compliance, and the tech industry in general.

This is the final episode of the bi-weekly OpenChain Webinar series for 2020. We have featured international speakers on a wide range of topics related to open source compliance challenges and solutions. Learn more here: 
https://www.openchainproject.org/webinars-interviews

We will be back in early 2021 with more speakers, discussions and insights.

Join Our Webinar

• https://us02web.zoom.us/j/9990120120?pwd=NzVCaFE2L1RRRFZaSkk0dm8xdlplUT09

Password

• 123456

One Tap Telephone (no screensharing)

* +358 9 4245 1488,,9990120120# Finland
* +33 7 5678 4048,,9990120120# France
* +49 69 7104 9922,,9990120120# Germany
* +852 5808 6088,,9990120120# Hong Kong
* +39 069 480 6488,,9990120120# Italy
* +353 6 163 9031,,9990120120# Ireland
* +81 524 564 439,,9990120120# Japan
* +82 2 6105 4111,,9990120120# Korea
* +34 917 873 431,,9990120120# Spain
* +46 850 539 728,,9990120120# Sweden
* +41 43 210 71 08,,9990120120# Switzerland
* +44 330 088 5830,,9990120120# UK
* +16699006833,,9990120120# US (San Jose)
* +12532158782,,9990120120# US

Find your local number: https://zoom.us/u/abeUqy3kYQ ( https://www.google.com/url?q=https%3A%2F%2Fzoom.us%2Fu%2FabeUqy3kYQ&sa=D&usd=2&usg=AOvVaw2yK4fS2trpB1lITLI31XE9 )
Not all countries have available numbers.

After dialing the local number enter 9990120120#

Check Out All Our Other Webinars

• https://www.openchainproject.org/webinars-interviews