Start-up company to sell open-source insurance
Legal action by The SCO Group has created interest in open-source software insurance
IDG News Service - A New York-based company has spotted a new business opportunity in The SCO Group Inc.'s legal battle with the Linux community: open-source insurance.
Open Source Risk Management LLC (OSRM), a start-up company that last month hired Pamela Jones, editor of the popular Groklaw.net Web site, as director of litigation risk research, plans to soon begin offering insurance policies to companies that use open-source software but fear that they may be sued, according to a company spokeswoman.
The company now offers a variety of professional services, including software certification and strategic consulting on open-source software insurance. It is also planning a series of training sessions on how best to mitigate the risk of using open-source software. The first such session will be held April 27 in Santa Clara, Calif.
SCO claims that the Linux operating system violates its Unix copyrights, a claim hotly disputed by the Linux community, and has sued a number of IT vendors and even two Linux users -- DaimlerChrysler AG and auto parts retailer AutoZone Inc. -- in connection with its intellectual property (IP) claims.
Though some Linux vendors like Hewlett-Packard Co. and Novell Inc. have already started to offer indemnification for their customers, these programs are "kind of limited," said Heather Meeker, a partner at the Miami law firm Greenberg Traurig LLP, who is working with OSRM on the training sessions. Some indemnification programs, for example, no longer cover users who modify their Linux software, a key feature of open-source, she said.
While there may be riskier areas in high technology -- companies have lost billions of dollars because of computer security breaches, for example -- the intense amount of publicity generated by the SCO lawsuit has created interest in open-source software insurance, Meeker said.
Part of the reason for the concern over SCO is that the Lindon, Utah-based software company has acted differently from companies in proprietary IP disputes. "One of the things that SCO did that raised concerns is they started sending letters to users of the software," Meeker said.
OSRM is not simply responding to SCO but actually providing a service that all software users should have, said Bruce Perens, an open-source advocate who has had discussions with the company. "Software risk management is something that all software needs, and is something that's not provided adequately for proprietary software," he said.
SCO itself did not seem displeased to learn of OSRM's offerings. "I guess this kind of thing was bound to creep up," said SCO spokesman Blake Stowell. SCO believes that its $699 per processor Intellectual Property License for Linux, however,is a better idea. "Ours is certainly the most reasonable way to go and certainly the safest way to go," he said.
- Top 3 Myths about Big Data Security : Debunking common misconceptions about big data security Big data represents massive business possibilities and competitive advantage for organizations that are able to harness and use that information. But how are...
- Magic Quadrant for Data Masking Technology IBM is a leader in Gartner Inc's Magic Quadrant for Data Masking Technology. Read the full report to learn about IBM.
- Best Practices for Securing Hadoop Historically, Apache Hadoop has provided limited security capabilities. To protect sensitive data being stored and analyzed in Hadoop, security architects should use a...
- Top Tips for Securing Big Data Environments: Why Big Data Doesn't Have to Mean Big Security Challenges Organizations must come to terms with the security challenges they introduce. As big data environments ingest more data, organizations will face significant risks...
- What should I look for in a Next Generation Firewall? SANS Provides Guidance With so many vendors claiming to have a Next Generation Firewall (NGFW), it can be difficult to tell what makes each one different....
- Why Are Customers Really Deploying an NGFW? It seems every IT Security expert is talking about the NGFW, but what are people really doing? This webcast covers 5 real-world customer... All Gov't Legislation/Regulation White Papers | Webcasts