Automating the license compatibility process in open source software with SPDX
Date
2017Source
Journal of Systems and SoftwareVolume
131Pages
386-401Google Scholar check
Keyword(s):
Metadata
Show full item recordAbstract
Free and Open Source Software (FOSS) promotes software reuse and distribution at different levels for both creator and users, but at the same time imposes some challenges in terms of FOSS licenses that can be selected and combined. The main problem linked to this selection is the presence of a large set of licenses that define different rights and obligations in software use. The problem becomes more evident in cases of complex combinations of software that carries different – often conflicting – licenses. In this paper we are presenting our work on automating license compatibility by proposing a process that examines the structure of Software Package Data Exchange (SPDX) for license compatibility issues assisting in their correct use and combination. We are offering the possibility to detect license violations in existing software projects and make suggestions on appropriate combinations of different software packages. We are also elaborating on the complexity and ambiguity of licensing detection in software products through representative case studies. Our work constitutes a useful process towards automating the analysis of software systems in terms of license use and compatibilities. © 2016 Elsevier Inc.
Collections
Cite as
Related items
Showing items related by title, author, creator and subject.
-
Conference Object
Validate your SPDX files for open source license violations
Paschalides, D.; Kapitsaki, Georgia M. (Association for Computing Machinery, 2016)Licensing decisions for new Open Source Software are not al-ways straightforward. However, the license that accompanies the software is important as it largely affects its subsequent distribution and reuse. License information ...
-
Article
Open source license violation check for SPDX files
Kapitsaki, Georgia M.; Kramer, F. (2014)The Open Source Software development model has gained a lot of momentum in the latest years providing organizations and software engineers with a variety of software, components and libraries that can be exploited in the ...
-
Article
An insight into license tools for open source software systems
Kapitsaki, Georgia M.; Tselikas, N. D.; Foukarakis, I. E. (2015)Free/Libre/Open Source Software (FLOSS) has gained a lot of attention lately allowing organizations to incorporate third party source code into their implementations. When open source software libraries are used, software ...