Considerations and challenges for the adoption of open source components in software-intensive businesses

A substantial number of enterprises and independent software vendors are adopting a strategy in which software-intensive systems are developed with an open architecture (OA) that may contain open source software (OSS) components or components with open APIs. The emerging challenge is to realize the benefits of openness when components are subject to different copyright or property licenses. In this chapter, the authors identify key properties of OSS licenses, present a license analysis scheme to identify license conflicts arising from composed software elements, and apply it to provide guidance for software architectural design choices whose goal is to enable specific licensed component configurations. The scheme has been implemented in an operational environment and demonstrates a practical, automated solution to the problem of determining overall rights and obligations for alternative OAs as a technique for aligning such architectures with enterprise strategies supporting open systems.

Download Full-text

Audit Mechanisms in Electronic Health Record Systems

International Journal of Computational Models and Algorithms in Medicine ◽

10.4018/jcmam.2012040102 ◽

2012 ◽

Vol 3 (2) ◽

pp. 23-42 ◽

Cited By ~ 2

Author(s):

Jason King ◽

Ben Smith ◽

Laurie Williams

Keyword(s):

Electronic Health Record ◽

Open Source ◽

Health Information ◽

Black Box ◽

Qualitative Assessment ◽

Test Cases ◽

Health Record ◽

Protected Health Information ◽

Electronic Health ◽

Software Intensive

Inadequate audit mechanisms may result in undetected misuse of data in software-intensive systems. In the healthcare domain, electronic health record (EHR) systems should log the creating, reading, updating, or deleting of privacy-critical protected health information. The objective of this paper is to assess electronic health record audit mechanisms to determine the current degree of auditing for non-repudiation and to assess whether general audit guidelines adequately address non-repudiation. The authors analyzed the audit mechanisms of two open source EHR systems, OpenEMR and Tolven eCHR, and one proprietary EHR system. The authors base the qualitative assessment on a set of 16 general auditable events and 58 black-box test cases for specific auditable events. The authors find that OpenEMR satisfies 62.5% of the general criteria and passes 63.8% of the black-box test cases. Tolven eCHR and the proprietary EHR system each satisfy less than 19% of the general criteria and pass less than 11% of the black-box test cases.

Download Full-text

Adoption of open source software in software-intensive organizations – A systematic literature review

Information and Software Technology ◽

10.1016/j.infsof.2010.05.008 ◽

2010 ◽

Vol 52 (11) ◽

pp. 1133-1154 ◽

Cited By ~ 113

Author(s):

Øyvind Hauge ◽

Claudia Ayala ◽

Reidar Conradi

Keyword(s):

Literature Review ◽

Open Source ◽

Systematic Literature Review ◽

Open Source Software ◽

Software Intensive

Download Full-text

Software Licenses, Open Source Components, and Open Architectures

Aligning Enterprise, System, and Software Architectures ◽

10.4018/978-1-4666-2199-2.ch004 ◽

2013 ◽

pp. 58-79

Author(s):

Thomas A. Alspaugh ◽

Hazeline U. Asuncion ◽

Walt Scacchi

Keyword(s):

Open Source ◽

Open Source Software ◽

Architectural Design ◽

Open Systems ◽

Open Architecture ◽

Operational Environment ◽

Software Licenses ◽

Analysis Scheme ◽

Open Architectures ◽

Software Intensive

A substantial number of enterprises and independent software vendors are adopting a strategy in which software-intensive systems are developed with an open architecture (OA) that may contain open source software (OSS) components or components with open APIs. The emerging challenge is to realize the benefits of openness when components are subject to different copyright or property licenses. In this chapter, the authors identify key properties of OSS licenses, present a license analysis scheme to identify license conflicts arising from composed software elements, and apply it to provide guidance for software architectural design choices whose goal is to enable specific licensed component configurations. The scheme has been implemented in an operational environment and demonstrates a practical, automated solution to the problem of determining overall rights and obligations for alternative OAs as a technique for aligning such architectures with enterprise strategies supporting open systems.

Download Full-text