Process scenarios in open source software certification

Fabbrini Fabrizio, Fusani Mario, Marchetti Eda

Open Source Software  Certification  Software Process 

Certification of Open Source Software (OSS) presents inherent trade-offs due to the necessity of precisely identifying both a product and an independent certification agent, and on the other of maintain the peculiar, valuable OSS characteristic of being available to an unlimited multiplicity of actors for trial, use and change. This is an intriguing challenge, usually solved by removing from the picture the certifying agent and providing an intrinsic certification by means of rigorous, reapplicable property demonstrations, adopting Formal Methods (FM) in expressing and verifying the code. As such approach, yet quite valuable and good-promising, has some restrictions (such as the limited set of provable product qualities), we propose to tackle the problem by analysing the various processes executed by different OSS stakeholders, including the process of an independent Certification Body. In the paper some kinds of representative scenarios in which such processes interleave are presented and discussed. The aim is to introduce a process-centered perspective for OSS that can stimulate research to further understand and mitigate the mentioned trade-offs.

Source: 5th International Workshop on Foundation and Techniques for Open Source Certification, OpenCert 2011, pp. 3–18, Montevideo, Uruguay, 14-15 November 2011

Publisher: European Association of Software Science and Technology, EASST, Swadlincote, GBR