Kouki Hama from Toshiba presented the following session: ‘Using SW360 for OSS Compliance Management Process’.
SW360 is OSS tool for centrally managing software component information, license information, vulnerability information, and etc. This tool also allows you to associate project information with many software components.
Toshiba has begun centralizing information management of open source software by SW360. This made it possible to share open source information across departmental barriers. On the other hand, feedback from users obtained various issues.
Kouki will explain how Toshiba has promoted the use of open source by SW360 and will explain how to approach issues. These include issues that originate from Japan domestic requirement and issues that need to be solved beyond the boundaries of a company. Moreover, we will report on what kind of open source compliance management system Toshiba aims for.