Comments on 2019 Board of Directors Election Candidates
Last modified by Patrick Masson on 2019/03/22 16:44
- Manage
- Copy
- Actions
- Export
- Print Preview
- Viewers
- Source
- Siblings
- Content
- Attachments
- History
- Information
- Likes
Export
Choose the export format from the list below:
$services.rendering.render($uix.execute(), 'html/5.0')
$services.rendering.render($uix.execute(), 'html/5.0')
$services.rendering.render($uix.execute(), 'html/5.0')
- Office Formats (3)
-
Export as Open Document Text (ODT) format using the Office Server
-
Export as Portable Document Format (PDF) using the Web Browser
-
Export as Rich Text Format (RTF) using the Office Server
-
- Other Formats (1)
-
Export as HyperText Markup Language (HTML)
-
How will you help develop open source in China and other developing nations? People like Naomi Wu have demonstrated that it can work there, but get little to no support.
Interesting question. I know Naomi Wu personally, she is a very inspiring person. Her work is focusing on open source hardware. I am not sure the meaning of getting little or no support but if you are in Shenzhen, it's already a big advantage because of the accessible resources and manufacturing facilities for hardware development. Open source is not a new thing in China, it is actually quite well-developed. They have many active usergroups across China. There is a big number of Chinese contributors to open source projects - on the top of my head would be Arch Linux as many of my Chinese friends are contributors there. We can also check on GitHub for the statistics. At one point, I saw the top contributor was someone from Baidu. Chinese people develop their own open source applications to serve the local needs. But because of language barrier and the not-so-outspoken personality, Chinese open source community is not so visible to the outside world.
The question here is not about how we help to develop open source in China but should be how we could understand better the situation, how we could connect with people there and how we could bring together different communities around the world to share ideas, exchange knowledge and collaborate on projects. We already started some initiatives at FOSSASIA within our limited resources. We organize events, meetups in China to bring visitors to China and also to bring Chinese communities together because we understand that it is difficult for Chinese people to travel outside of the country. We partnered up with local institutions and usergroups. I visited many Linux User Groups in China. I also learned the language so I can be better connected with the people there.
I am very glad to have people like Hong Phuc Dang around, as I don't know much about China. I hope you will continue to work with OSI whether or not you are elected, as I have.
I agree, Bruce. Although we know much more about China than we once did, the country remains mostly a mystery to most of us in the U.S. And I think Hong Phuc Dang is entirely correct in her assertion that we should ask "how we could connect with people there and how we could bring together different communities around the world to share ideas, exchange knowledge and collaborate on projects."
What will you do to get companies to not only adopt OS, but to use it responsibly and not just to spy on users to restrict their rights?
There are different approaches to this question. For example, something that I saw - people call to boycott companies that do not act as good open source citizens. They adopt OS but never comply or respect the license terms. By broadcasting their bad practices to the world, some believe pressure from the public can force companies to act differently. However I personally prefer a more collaborative approach. When companies do not use OS responsibly, one of the reasons could be that they do not understand exactly what needs to be done. Legal & compliance is a very tricky topic in the corporate world. If we can make companies realize how much it will cost them because of not doing the right thing, they might behave differently.
A few ideas to tackle this question:
1) Raise more awareness around the topic. Continue to publish and share good documentation.
2) Promote existing tooling and platform that help companies to stay complied and encourage companies to work with communities to build new tools.
3) Promote and praise good examples/role models. Companies tend to copy each others or they try to be better than one another. Highlighting good work could have a positive effect.
I don't think that getting companies to adopt open source is an issue any more. About a year ago Craig McLuckie, one of the original developers of Kubernetes and co-founder of Heptio (now a part of VMware), told me that the majority of Fortune 500 companies he was contacting weren't interested in even talking to vendors unless their solutions were open source. That battle is won. Commercial users are by far the largest users of open source these days.
From my vantage point, it appears that the overwhelming majority of enterprise users of open source pay great attention to license compliance and many, if not most, are contributing code upstream, even when they're using the software completely in-house and have no obligation to do so.
Does this mean there are no bad actors? Of course not. One thing that users and developers can do, especially if they're OSI members, is to bring any compliance issues they know about to the attention of OSI so that we can decide what actions to take on an individual basis.
There is only so much you can do with copyright, and unfortunately adding to our licenses provisions about the way people actually use the software would be unproductive. If we go down that path, we will end up having opposing licenses from different political camps, like pro-life and pro-choice licenses. What a nightmare that would be! And in the end, such licenses would probably be overturned by courts. Rather than each of us designing their own law and attempting to make it work in our licenses, we need to work for civil and criminal law that applies to everyone regarding privacy, security, and good practice in general by companies that control very powerful devices in our homes.
Free Speech is important. If you don't like how a company is treating customers, write about it and share your writing with others. There must be a perceived cost for violating the rights of your users and customers. Or companies just won't care. But I think this is different between nations. There are things I would be confident to talk about publicly in California, because the US has Free Speech in the Constitution and California has an anti-SLAPP law, and in some countries a collaborative approach is all we can have because Free Speech is actually dangerous. Especially when government, rather than a private company, is the problem.
Then, there is the case of companies that do not respect the Open Source licenses, and do not comply with their terms:
We do approach companies privately - in the few cases where this doesn't happen, it's because others have already approached them and have been rebuffed. There is a lot going on behind the scenes that you never see. For example I have been trying to get compliance out of a drone manufacturer (in China) for over a year, where I actually own some of the copyrights in question. They have made some efforts to cooperate, but haven't released all that they should so far. Bradley Kuhn is the main person who works with accused infringers, and he generally tries to get compliance for years before Software Freedom Conservancy actually brings a lawsuit.
It's important to publicize when a company isn't being a good citizen. There must be a perceived cost for non-compliance, and when a company approached privately doesn't comply, publicity is a better tool than a lawsuit.
But perhaps the most important thing we can do when there is a persistent infringer is to make better software than theirs! I suspect a lot of the work on Linux containers and virtual machines is because people (and companies) would like to beat a certain company that hasn't been a very good citizen.
I did have a company sue me for three million dollars for calling them a GPL violator. I am fighting this case so that nobody else will be intimidated for saying that someone violates a license - especially their license. We are winning that case and have this $300,000 bond from the folks who sued me to pay my lawyers in the lower court case, O'Melveny and Meyers, if we win the appeals - which is very likely. EFF and O'Melveny and Meyers have taken on the appeals for free, as co-counsel. Please join EFF. Also, support anti-SLAPP laws in your state.
I agree with your first assertion completely. It's probably not going to be possible to stay within the Open Source Definition and create a license that will prevent another entity from using your software in a way that's detrimental to your business. I think it's important to remember that open source is not, and has never been, a business model. If an open source developer and/or vendor's business is threatened by a company's use of its open source software, as long as that company is in compliance with the license, there's little OSI can do to help.
I think historically most of the thought around open source licensing has been in/around software code, intellectual property etc. Have there been any thoughts put into open data and licensing? Aspects about open source licensing but more geared towards data? Right to use, fair use, access to data that started as public data but has either been brought into commercial applications / pay-walled etc?
Something which has been of interest to me related to things like a smart city initiative. How, if at all, would things like open source licensing relate to the data collected. Right to use, de-identification ( and granularity ).
Bill, the first thing we should consider is whether Open Data can, or should, be copyrighted at all. In general, the law does not support copyright of simple statements of facts, and this has been very important to the Open Source community so far. For example, Astrolabe, a producer of astrology software, sued Open Source programmers Arthur David Olson and Paul Eggert, who created and maintained the time zone library and database (tzlib and tzdata). This library and database are used on Linux and are incorporated into most of our programming language libraries, and are part of many commercial operating systems. Astrolabe owned the rights to the ACS International Atlas, which Olson and Eggert used as a reference. Astrolabe sued for infringement, and EFF defended Olson and Eggert and won. Did I say enough times yet that you should join EFF? Olson and Eggert depended on the time zone information being in the public domain. Similarly, you depend in many ways on basic facts remaining in the public domain.
That said, you can get a copyright on the arrangement of the data, rather than the data itself. And you can license that. But in general you don't own the facts, even if you put a lot of effort and expense into collecting them.
And in general, it is better that this stuff not be protected than it would be if it was and we were able to enforce our licenses effectively, because more people would be enforcing their licenses against us, and all of the ways we use data.
So, I don't have a really good solution for you. I'd be happy to discuss this more.
Bruce,
The more I think about my original question it's likely more in context of governance and individual rights. It's likely a local/state/federal law(s) debate. Thinking of GDPR and the like vs the licensing of the data.
Thanks for the response and all you have done for the community!
Bill
I would tend to agree that data collection and distribution is probably something that needs to be handled in terms of legislation. Organizations such as OSI and EFF could perhaps be most useful here through lobbying efforts. Of course, this would only be possible in countries where OSI has a presence, which would be yet another reason why OSI should work on expanding our membership around the world.
Bill,
You are correct that we need data privacy law for data about individuals, and we need law about making data that isn't about individuals public when it's part of government-funded research. I am encouraged by the open publication movement and how well it is taking hold in scientific circles. Note the recent spat between UC Berkeley and Elsevier, for example. Regarding the privacy law for individuals, the closest thing we have so far is HIPAA. Although criticized for its size and complexity, it has gotten pretty much everyone in the medical and health insurance industry trained to protect patient-identifiable information and to anonymize it. Even in ham radio circles when assisting in emergency communications we are now trained to anonymize patient health data.
Many candidate statements here only express interest in membership-building, PR and publicity, and evangelism. This is disappointing. I would expect an OSI director to be on top of more policy issues. I would have liked to see more upon:
Actually Bruce, I think I dealt with almost all of your bullet points, not by addressing them specifically, but in my thoughts about open source, the players in the current evolution of open source, and what can and can not be accomplished through open source licensing. About the only issue that I did not address was gender issues, because I've been fighting gender and sexuality battles since the 1960s and certainly don't want those issues to be the centerpiece of my campaign. However, this old hippie can assure you that she's 104 percent on the side of equality for all peoples and for creating work and living spaces that are free from harassment and roadblocks, whether visible or invisible.
Christine, you did address policy issues and you got my vote because you did. Some candidates still have not. And obviously you could instruct me on women's issues, although I'm trying hard. I got to deal with a male professor tone-policing a woman scientist this week. It frustrated me that this still goes on in 2019. I'm sure it frustrates you more.
Thank you for your vote, Bruce. Sorry to hear about your fellow student's problems with an ahat professor (I'm assuming she's a student). Academia can be like a feudal fiefdom.
What do you think could be done to involve more students into the OSI?
As a high-schooler, I consider myself fortunate enough to know enough and care about open source but there are a lot more students who don't, especially in developing nations. As such, I'd say the only program I've witnessed that helps promote Open Source globally among teens has been Google Code-in.
I'd like to know what more could possibly be done considering it is the younger generation that will represent all that we stand for in the future.
Great question Aadi! As a college undergraduate (studying CS at RPI in NY) I have asked those questions many times myself! Very few friends of mine who study computer science or any tech fields are often either not very involved in or not very aware of open source. Of those who actively use and develop open source projects, too few know about the OSI. Much can be done to involve the younger generation.
One wonderful way I've been able to learn, teach, and promote open source is in my own university's open source dedicated club, RCOS (https://rcos.io/), which, as a OSI affiliated group, has given me the opportunity to propose a project and find students to work with me on it as well as get course credit for working on projects! From what I've heard from RCOS, very few of these sorts of clubs exist in universities, and its probably even more rare in high school!
The OSI could certainly work to encourage universities to start organizations that allow students to explore open source and develop a community that can introduce them to the open source world. Movements can also be made on more local levels to open open source clubs in high schools. If the OSI got involved in this (which is what I would propose I am elected) then many students would have the opportunity to learn the *official* tenets of open source as well as getting a head start on learning and using open source technologies.
Good to hear, Frank.
Getting credit for open source development is definitely a good idea. Open Source software development should have equal stature as that of competitive programming. I myself am expected to join university this fall (provided Ivy day works out well, or I get into Stanford) and definitely would like to contribute what I can to spread the opportunity.
In fact, schools could have summer projects for students who're in STEM to come up with something cool that they can open source. The student could get grades as well as the knowledge and the satisfaction of having their work out there for everyone to use.
Great question, Aadi,
I think we need to take some of the existing educational programs, see if they are good enough or need more work, make them easy to pull offline and use, and encourage STEM teachers to add them to curricula. ARRL does this for ham radio and has a summer workshop for teachers with grants to fly them to it and lodge them. Why shouldn't we do it for Open Source? This takes volunteers to work on it. If people like you volunteer and take on the project, we can get it done. We have corporate friends who could fund this.
That's a great idea Bruce!
If Open Source workshops or projects could be directly inculcated into school curriculum that would ensure that students not only become skilled but also responsible developers as they imbibe their education.
I asked questions of a number of candidates. All but one answered (so far), and all of the answers were really good IMO. I didn't ask questions of all of them in the hope that others would.
I really appreciate that the candidates have their heart in this. This isn't really the sort of election where there are opponents.