TÜV SÜD becomes the first certification authority in the OpenChain Partner Program

By | News

The OpenChain Project is delighted to announce that TÜV SÜD has joined the OpenChain Partner Program, and is the first certification authority to do so. TÜV SÜD has been in communication with the OpenChain Project and our Platinum Members for several months, and today announced that they have formally completed OpenChain Conformant third-party certification for Hitachi.

TPS Standard PPP 15001A has been created by TÜV SÜD for OpenChain Conformant third-party certification. Certification services for this standard are being offered globally by TÜV SÜD. Interested parties should contact Andreas Bärwald, Head of Software Solutions at TÜV SÜD Product Service GmbH. Interested parties in Japan can contact TÜV SÜD Japan.

Please note that OpenChain Conformance is not tied to third-party certification. This is a service optionally available to companies who wish to seek it. We are glad to work closely with TÜV SÜD on this service and look forward to collaborating with other certification authorities as we continue to expand globally.

Learn More

Hitachi has joined the OpenChain Community of Conformance

By | News

Today Hitachi announced that they are OpenChain Specification 1.2 Conformant and had their conformance certified by a third-party, TÜV SÜD. Hitachi is the first company in Japan to become OpenChain Conformant and the first company in the world to undergo third-party certification.

日立製作所、FOSS(フリーオープンソースソフトウェア)のライセンス管理プロセスを構築し適切に運用するための認証「オープンソース ライセンス ガバナンス プロセス認証」をテュフズードジャパンより取得

Learn More (Japanese)


  • Contact Shane Coughlan, OpenChain General Manager, at

OpenChain @ EOLE 2018 – 5th December

By | News

Malcolm Bain presented OpenChain at the ‘European Open Source and free software Law Event’ (EOLE) on 5th December in Paris. EOLE is an annual open source law event for general public and legal /technical professionals, this year focussing on compliance. Malcolm presented the background, process, requirements for certification and future plans of OpenChain.

Learn More

EOLE is held adjacent to the Paris Open Source summit.

RFC: Reference Business Workflows for Open Source Compliance.

By | News

OpenChain Project Japan Work Group has begun an exciting project to create ‘Reference Business Workflows for open source compliance.’ Your comments are welcome as we prepare a formal 2019 release.

“Business workflows for software development are critical for organizations seeking to improve open source compliance processes. In this context “business workflow” means how software and relevant license information is received from a supplier, how it is transferred and processed internally, and finally how it is released to customers. Inside an organization several team (functional blocks) may cooperate with each other to achieve overall open source compliance.

To contribute to this discussion the OpenChain Japan Work Group has prepared examples of roles in business workflows. These examples are intended to help frame the discussion and to acknowledge that multiple roles exist in multiple business workflows across different companies and markets.”

Comment and Contribute

OpenChain welcomes Interneuron to our Community of Conformance

By | News

The OpenChain Project proudly announces that Interneuron has an OpenChain Conformant compliance program. Interneuron is a British Community Interest Company (CIC) that exists primarily for the benefit of those in need of health and social care services company, rather than for shareholders. It provides numerous services to different parts of the British National Health Service.

“OpenChain conformance benefits our whole organization – from developers onboarding and releasing their first FOSS products, through to the implementation team building trust and confidence with our customers,” says Matt Conway, CTO of Interneuron. “OpenChain conformance demonstrates to all Interneuron’s commitment to delivering enterprise level open source solutions with quality management and security at the heart of our development processes.”

“Interneuron were invited to attend our OpenChain curriculum based training course “Get it Right with Open Source Software” by NHS Digital’s Code4Health team,” says Martin Callinan, CEO of Source Code Control. “The training helped them understand the value of managing their open source software supply chain. We supported Interneuron through the conformance process and will continue to support them in maintaining conformance. OpenChain is now part of their business as usual software development.”

“The most exciting thing about the OpenChain Standard is how it helps companies of all sizes to contextualize and improve open source compliance,” says Shane Coughlan, OpenChain General Manager. “One of our key goals is to ensure not only that doing so is fast and efficient, but that it also furthers the business goals of every organization. We are delighted with Interneuron’s engagement with the OpenChain community and we are grateful to our partners at Source Code Control for fostering this valuable relationship.”

Learn More

OpenChain welcomes Scania to our Community of Conformance

By | News

The OpenChain Project proudly announces that Scania has an OpenChain Conformant compliance program.Scania is a world-leading provider of transport solutions, including trucks and buses for heavy transport applications combined with an extensive product-related service offering. Scania offers vehicle financing, insurance and rental services to enable our customers to focus on their core business. Scania is also a leading provider of industrial and marine engines.

Learn More

Uber Joins the Linux Foundation’s OpenChain Project as a Platinum Member

By | News

Uber is dedicated to fostering greater collaboration and community across our open source ecosystem. In this spirit, Uber today announced that we are joining the OpenChain Project as a Platinum member. This news follows our recent announcement during Uber Open Summit 2018 that Uber would be joining the Linux Foundation as a Gold member.

Read the entire post on the Uber Engineering Blog.

OpenChain Project Gains Facebook, Google and Uber as Platinum Members

By | News

OpenChain Project Gains Facebook, Google and Uber as Platinum Members

Invest in making open source compliance more predictable, understandable & efficient across supply chains

SAN FRANCISCO and YOKOHAMA, JAPAN – OPEN COMPLIANCE SUMMIT –  December 6, 2018 — The OpenChain Project, which builds trust in open source by making open source license compliance simpler and more consistent, announced today at Open Compliance Summit that Facebook, Google and Uber have joined as platinum members.  The only standard for open source compliance in the supply chain, OpenChain provides a specification as well as overarching processes, policies and training that companies need to be successful.

Every day companies consume billions of lines of open source software through their supply chains as they build exciting new products and services. One key challenge as  code flows between companies is ensuring the relevant license requirements are met in a timely and effective manner. Many organizations seek to address similar compliance issues in a similar manner, providing an excellent opportunity for consolidation and harmonization.

The OpenChain Project provides companies with a consistent way to address these challenges. At the heart of the project is a specification, an overarching standard for how companies of all sizes, whether in physical products, in the cloud or internally, can deal with open source compliance.

Running some of the largest data centers, platforms and cloud infrastructure in the world, Facebook, Google and Uber use a considerable amount of open source software in their businesses and are joining the OpenChain project to proactively manage open source across their supply chains.

“At Facebook, we believe open source software accelerates the pace of innovation in the world. We are proud to support the OpenChain project, and, by doing so hope to make the open source supply chain more predictable and efficient so the community can focus on solving challenges of speed, complexity, and deploying open source software at scale,” said Michael Cheng, Facebook Open Source.

“Google is a strong believer that working together and being engaged with open source communities creates a ripple effect for the broader industry,” said Chris DiBona, Director, Open Source, Google. “We’re excited to join the OpenChain project and expect it will encourage greater compliance, and foster discussion on how the industry and open source projects can continue to work to improve software throughout the supply chain.”

“In the tech industry, it’s easy to take for granted how critical open source is for innovation and community collaboration,” said Matt Kuipers, IP senior counsel at Uber. “However, the lack of consistent open source policies remains an obstacle for adoption throughout the supply chain and across industries. We’re excited to join the OpenChain Project to support the adoption of consistent policies, reduce barriers to adopting open source, and increase the value of open source for more industries beyond tech.”

“We are very excited to see three innovative tech leaders join the project and welcome their experience to our Governing Board,” said Shane Coughlan, OpenChain General Manager. “We believe that their support will be a vital component as we continue to build upon a successful, meaningful industry standard for open source compliance in the supply chain.”

OpenChain also provides companies with overarching processes, policies and training to be successful in open source compliance. OpenChain Conformance with the OpenChain Specification confirms that an organization follows the key requirements of a quality open source compliance program, and builds trust between organizations in the supply chain. It makes procurement easier for purchasers and preferred status easier for suppliers.

As platinum members, one representative from each company will join the OpenChain Governing Board. Other platinum members of the OpenChain project include Adobe, ARM Holdings, Cisco, Comcast, GitHub, Harman International, Hitachi, Qualcomm, Siemens, Sony, Toshiba, Toyota and Western Digital.

Additional Resources

About the OpenChain Project

The OpenChain Project builds trust in open source by making open source license compliance simpler and more consistent. The OpenChain Specification defines a core set of requirements every quality compliance program must satisfy. The OpenChain Curriculum provides the educational foundation for open source processes and solutions, whilst meeting a key requirement of the OpenChain Specification. OpenChain Conformance allows organizations to display their adherence to these requirements. The result is that open source license compliance becomes more predictable, understandable and efficient for participants of the software supply chain.

About The Linux Foundation

The Linux Foundation is the organization of choice for the world’s top developers and companies to build ecosystems that accelerate open technology development and commercial adoption. Together with the worldwide open source community, it is solving the hardest technology problems by creating the largest shared technology investment in history. Founded in 2000, The Linux Foundation today provides tools, training and events to scale any open source project, which together deliver an economic impact not achievable by any one company. More information can be found at


Sarah Conway
OpenChain Project/Linux Foundation