Welcome!

HP Authors: Yeshim Deniz, Keith Swenson, Jacques Durand, Maureen O'Gara, John Funnell

Related Topics: HP, Open Source

HP: Article

HP May Accidentally Kill Black Duck & Palamida

Palamida and Black Duck may cry in their beer when this gets out and about
By HP News Desk
Article Rating:
January 29, 2008 11:30 AM EST
Reads:
 7,831

See, HP is open sourcing widgetry very much like theirs, widgetry that it developed for itself over the last seven years at the cost of "millions of dollars," it says, and 60 man-years work that sorts out the various licenses that govern open source software - imagine, there are 1,700 licenses in OpenOffice alone - and lets you know if said licenses have been tinkered with in any way.

It calls it FOSSology and has made it available at FOSSology.org under the GPLv2.

It's designed, it says, to address the acquisition, tracking and licensing of FOSS. It can detect code reuse and provenance even if the code has been changed.

HP uses as an example the real-life case of the company that thought the FOSS software it had in-house contained 25 licenses when in fact it was 75 and had to choose between implementing governance policies that covered all of them or replacing the software at an estimated cost of $80 million.

Black Duck executive VP Bill McQuade says FOSSology is nice and everything but it uses string search and doesn't find all the hidden code if, say, the copyrights have been removed. Black Duck, which has built its widgetry for large commercial accounts, uses code printing and marketing, which compares actual lines. It also claims to be more scalable.

HP, which has claimed Linux sales leadership for the last nine years and has guided a lot of companies through the proverbial minefield, is also open sourcing its FOSS best practices, forming in the process a Linux Foundation working group called the FOSSBazaar composed of Google, Novell, Coverity, OpenLogic, Olliance, Sourceforge and DLA Piper, the law firm.

FOSSBazaar is pledged to offer online resources, educational documentation and community interaction - whatever that all means - to address FOSS business issues and promote FOSS best governance practices.

HP has kicked in its Open Source Health Check, which takes a snapshot of current FOSS use with FOSSology and then helps analyze FOSS management, making recommendations as it goes and tallying the total cost of ownership benefits of moving to FOSS.

HP expects its governance contributions will make the enterprise less risk-averse about using free and open source software and so tickle its revenues.

Published January 29, 2008 – Reads 7,831
Copyright © 2008 SYS-CON Media, Inc. — All Rights Reserved.
Syndicated stories and blog feeds, all rights reserved by the author.

More Stories By HP News Desk

HP News Desk trawls the world's news information sources and brings you timely updates on Hewlett-Packard's enterprise software portfolio including operating systems, print management tools, and the OpenView application management suite.

Comments (4) View Comments

Share your thoughts on this story.

Add your comment
You must be signed in to add a comment. Sign-in | Register

In accordance with our Comment Policy, we encourage comments that are on topic, relevant and to-the-point. We will remove comments that include profanity, personal attacks, racial slurs, threats of violence, or other inappropriate material that violates our Terms and Conditions, and will block users who make repeated violations. We ask all readers to expect diversity of opinion and to treat one another with dignity and respect.

Most Recent Comments
Kirstan Vandersluis 01/28/08 10:32:44 AM EST

HP and its FOSSology initiative further legitimizes open source use for the large corporation. This is good news for Black Duck and Palamida, as they depend on open source adoption for market growth. Their business model must evolve, though, just as any commercial vendor must change in the face of open source competition. FOSSology will pressure down their software price. They'll need to compensate with increased consulting and support. I think they should integrate FOSSology as well, making it one step in a more comprehensive source code scrub. There is always room for more thorough and easier to use product.

It wouldn't surprise me if one of these companies goes open source soon, since their model must move in that direction anyway.
Gunga Din 01/26/08 03:39:32 PM EST

This is a nasty headline and article by some anonymous writer. SysCon should be ashamed to publish this kind of linkbait.
Melisa Bleasdale 01/25/08 03:33:03 PM EST

In reference to this post, we'd invite people to view our actual response to the FOSSology announcement on our blog at http://www.palamida.com/blog.

The headline is a bit of stretch as Palamida views HP's initiative as a positive addition to the robust ecosystem of open source, and feel that there is definitely room for more solutions and resources in this area.

Palamida will continue to focus on bringing solutions to market to vet both the integrity and security of open source and accelerating its growth and adoption in the enterprise environment.

--Melisa LaBancz-Bleasdale
HP News Desk 01/25/08 09:36:36 AM EST

It calls it FOSSology and has made it available at FOSSology.org under the GPLv2. It's designed, it says, to address the acquisition, tracking and licensing of FOSS. It can detect code reuse and provenance even if the code has been changed.