Audit

Open Source Program Assessment (+ ISO/IEC 5230:2020 Readiness)

ISO/IEC 5230:2020 (OpenChain 2.1) defines the key requirements of a quality open source license compliance program, and the OpenChain Security Assurance Reference Guide identifies the minimum core set of requirements every Security Assurance program should satisfy.

To be confident in your open source compliance and security posture, FOSSAware offers support and assessment of your open source management program, according to ISO5230 and the OpenChain Security Assurance Guide key requirements.

M&A Open Source Due Diligence

Encompassing over two-thirds of the average modern software, open source has become an essential part of software development. Companies involved with technology M&A understand the importance and risks open source software poses to the deal’s value, whether the key asset is a device, software, or service. FOSSAware audits and analyses the key assets to identify and report open source actual and potential risks.

are development and its main building block. Under managing, open source software reduces its potential benefits and imposes unnecessary risks. FOSSAware provides you with the necessary help and advice for developing a clear and solid open source organizational strategy and Policy to mitigate these risks.

OSS risk identification and scoping of assessment based on deal structure, and involved assets.
Tool-based code scanning, dependency resolution, and license and security evaluation of OSS components.
Creation of complete Software Bill of Materials (SBOM) for in-depth evaluations.
Report and recommendation on aspects regarding Open Source compliance and security.
Assessing the maturity level of the applied Open Source Software Management program.

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Audit

Open Source Program Assessment (+ ISO/IEC 5230:2020 Readiness)

M&A Open Source Due Diligence

Share This Page

Share This Page

ABOUT

SERVICES

Consulting & Implementation

Managed Services

Audit

INSIGHTS

SHARE THIS PAGE

Audit​

Open Source Program Assessment (+ ISO/IEC 5230:2020 Readiness)

M&A Open Source Due Diligence

Share This Page

Share This Page

ABOUT

SERVICES

Consulting & Implementation

Managed Services

Audit

INSIGHTS

SHARE THIS PAGE

Audit