Conformance - OpenChain

OpenChain Conformance allows companies of all sizes and in all sectors to meet the OpenChain Specification. This builds trust between organizations in the supply chain. It makes procurement easier for purchasers and preferred status easier for suppliers. Conformance is accomplished by answering a series of questions online. The process has no time limit and remains private until it is completed.

Begin the Certification Process

Start Self-Certification

Explore Third Party Certification

Do More Preparation

We recognize that organizations in our community are at different levels in building their open source compliance processes. We illustrate this process as four levels in the “Path to Conformance.” For each level, we are gathering resources to support our community organization moved through the conformance process.

Level 1: Gaining Awareness of Open Source Compliance

Organizations in this stage may be asking:

What are open source risk? How can failing to comply with open source obligations impact engineering, business and legal teams?
How do I communicate the importance of open source compliance to my partners or within my own organization?
What are the benefits of open source compliance?

Official Project Resources:

Onboarding Slide Deck – OpenChain-On-Boarding-1.1-Final.pdf (PDF); openchain-onboarding-slides-1.0-Revised5.pdf (PDF – Japanese); OpenChain On-Boarding 1.0 Portuguese v03.pdf (PDF – Portuguese); Download (PDF – German); Download (PPTX – German); Download (ODP – German)
Compliance for Everyone Presentation – Download (PDF); Download (PPTX)

Level 2: Understanding How OpenChain Addresses Compliance Risks

Organizations In This Stage May Be Asking:

What are the benefits of OpenChain conformance?
What are key elements of the OpenChain project?
What are requirements for joining the community? For obtaining/implementing the specification?

Official Project Resources:

OpenChain Specification
- Version 1.2: openchainspec-1.2.pdf (PDF); 20181024_OC_Spec_v1.2_Translation-DE.pdf (PDF – German); OpenChain-Specification-1-2.pdf (PDF – Hindi); openchain-specification-1.2-it.pdf (PDF – Italian); openchainspec-1.2_jp.pdf (PDF – Japanese); openchainspec-1.2-kr.pdf (PDF – Korean)
- Version 2.0 Draft – Download (PDF)
- [Add Version 1.1, Version 1.0? Or maintain current resource list?]
OpenChain Overview – https://www.openchainproject.org/wp-content/uploads/sites/15/2017/09/A4_outlined.pdf
OpenChain Guide – OpenChain-On-Boarding-1.2-Final.pdf (PDF); openchain-onboarding-1.0-zh_CN.pdf (PDF – Simplified Chinese); openchain-onboarding-handout-1.0-Revised2.pdf (PDF – Japanese); OpenChain On-Boarding 1.0 – Portuguese v03.pdf (PDF – Portuguese)
OpenChain Handout – https://www.openchainproject.org/wp-content/uploads/sites/15/2017/11/OpenChain_OnePager_v2_ac.pdf
OpenChain for Management – Download (PDF); Download (DOCX)

Level 3: Understanding How to Implement OpenChain-Conformant Processes

Organizations In This Stage May Be Asking:

How do I assess my current compliance status?
How do I publicize OpenChain conformance?
Do I conform to a certain version of OpenChain? Do I need to update compliance processes for new versions?

Official Project Resources:

Self-Certify Online – https://www.openchainproject.org/conformance
Self-Certify Manually – https://wiki.linuxfoundation.org/_media/openchain/openchain_conformance_conformance_check_1.1.pdf

Level 4: Obtaining OpenChain Conformance

Organizations In This Stage May Be Asking:

What compliance processes do I need?
What do I need to know to perform a risk assessment?
What processes have other OpenChain community organizations used?

Official Project Resources:

OpenChain Resources – Slide Deck – https://www.openchainproject.org/curriculum
1. Curriculum Slides 1.2 (Tooling Merged) – Download (PPTX)
2. Curriculum Slides 1.2 – Download (ODP); Download (PDF); Download (PPTX)
3. Curriculum 1.1 (Simplified Chinese) – Download (PDF); Download (PPTX); Download (ODP)
4. Curriculum 1.1 (Traditional Chinese) – Download (PDF); Download (PPTX); Download (ODP)
5. Curriculum 1.1 (Japanese) – Download (PDF); Download (PDF with notes); Download (PPTX)

OpenChain Resources – Other Content

1. Tooling Overview – Download (PPTX); Download (PDF); Download (ODF)
2. M&A Checklist – Download
3. Flowcharts
  - Workflow: Including Open Source – flowchart-0.pdf
  - Workflow: Distribution Type – flowchart-1.pdf
  - Workflow: Deliver with Product – https://github.com/OpenChain-Project/curriculum/raw/master/flowcharts/flowchart-2.pdf
  - Workflow: Firmware with Source – flowchart-3.pdf
  - Workflow: Written Offer – flowchart-4.pdf
  - Workflow: Linking Type – flowchart-5.pdf
  - Curriculum Flowcharts (Chinese) – Download (PDF); Download (ODT)
4. Recommended Compliance Practices – Download (PDF)
5. Recommended Engineering Practices – Download (PDF)
6. Reusing Software Guide – Download (PDF)
7. Including License Info Guide – https://github.com/OpenChain-Project/curriculum/blob/master/guides/including_license_info.rst
8. Kanban
  - Kanban template – Download (XLSX); Download (ODS)
  - Kanban template source code control – Download (XLSX); Download (ODS)
Open Source Policy Template – https://www.openchainproject.org/news/2019/01/17/openchain-open-source-policy-template-now-available
OpenChain FAQ – https://www.openchainproject.org/faq