Accession Number : AD1027801


Title :   Open Source Software Compliance within the Government


Descriptive Note : Technical Report


Corporate Author : U.S. Army Engineer Research and Development Center, Information Technology Vicksburg United States


Personal Author(s) : Eckert,Lauren A


Full Text : https://apps.dtic.mil/dtic/tr/fulltext/u2/1027801.pdf


Report Date : 01 Dec 2016


Pagination or Media Count : 52


Abstract : Open Source Software (OSS) has become increasingly popular for software development, and subsequently, government usage has increased. This report outlines a process to manage the risks and complexity of OSS usage within the government. The first step in managing OSS licenses is to understand the requirements regarding compliance, distribution, sharing, attribution, compatibility, termination, copyright, and intellectual property. In order to maintain license compliance, a policy must be created and administered. This policy includes a process of OSS discovery, cataloging, evaluation, review, and approval. Specific guidance is also provided to aid with government acquisitions and contracts as well as information assurance and security compliance requirements. With proper understanding, process implementation, and policy maintenance, the government can effectively use OSS without compliance concerns.


Descriptors :   united states government , software development , GOVERNMENT PROCUREMENT , information systems , computer programming , vulnerability , test and evaluation , computer network security , contractors , acquisition , FEDERAL LAW


Subject Categories : Computer Programming and Software
      Sociology and Law


Distribution Statement : APPROVED FOR PUBLIC RELEASE