Upload
others
View
2
Download
0
Embed Size (px)
Citation preview
Top 10 Ways to Stretch Your Budget by Using More Open Source Software in 2010
Webinar on Dec 9, 2009
Presented by Kim Weins, Sr. VP of Marketingand Rod Cope, CTO and Founder of OpenLogic
Top 10 Ways to Stretch Your Budget by Using More Open Source Software in 2010
OpenLogic Company Confidential
Agenda
About OpenLogicOpen Source Adoption TrendsOvercoming Internal RoadblocksComplying with Open Source Legal RequirementsHot Open Source Technologies You Should Consider
2
OpenLogic Company Confidential
About OpenLogic
OpenLogic enables enterprises to safely and successfully
acquire, use, support and control free and open source software,
and thereby transform their development efforts and
realize significant savings.
OpenLogic Company Confidential 4
Aggregating Open Source for the Enterprise
One throat to chokeConsolidated SLA supportSupport
Provisioning
GovernanceRisk reduction
IndemnificationSaaS Governance platform
Trusted sourceCertified library of 500+ projects and CentOSManaged updates
ServicesExpertise
Consulting Services & TrainingIndependent experts on OSS
OpenLogic Company Confidential 5
Adoption of Open Source in the EnterpriseNu
mber
of co
mpan
ies
Open Source Maturity Stage
Prevent Manage Promote Transform
2008
2009
2010
OpenLogic Company Confidential
Forrester: IT Organizations Set to Expand Use of Open Source in 2009
Source: Forrester Research
Open Source is #1 area where Companies will
Expand Use
OpenLogic Company Confidential
5 Roadblocks to Open Source Adoption
1. Don’t know what open source to pick2. Concerns about support3. Different acquisition process4. Concerns about risks of open source5. Concerns about license compliance
7
OpenLogic Company Confidential
Roadblock: Don’t know which open source to pick
There are hundreds of thousands of open source projectsOnly a fraction are enterprise-ready
Dead projectsNo communityNo active developmentBad licensesLegal suitsSecurity issues
The source is importantNo guarantees that every download source has the right code
Don’t always know which ones are proven or best for any given use
8
OpenLogic Company Confidential
Tip: Define a certification and provisioning process
Define critical criteria to certify open source for potential useAdoptionCommunitySupportLicense/LegalTechnical
Define allowable download sourcesOLEXProject home pagesForgesLinux distrosInternal repository
9
OpenLogic Company Confidential
Tip: Leverage resources to make your selection
OpenLogic Certified Library42-point certification processAvailable on free website - OLEX - olex.openlogic.com
OLEX 500+ enterprise-ready open source packagesComprehensive search capabilitesInfo on licensesSecurity alertsVetted downloads from a trusted source
OLEX WaziComparison articles on open source in various categoriesIn depth articles and how-tos
10
OpenLogic Company Confidential
Roadblock: Concerns About Support
Community supportResponsiveness varies widelyYou may get an instant answer or no answerNewbies may get flamed if they break project normsNo SLAsBugs will be captured. Most likely to be fixed if you provide a patch
Vendor supportAvailable on some projectsMost popular projects will have multiple vendors supporting
Don’t be afraid to get competitive bids or ask for head-to-head testsOptions include “single project” vendors or open source support aggregators
Do-it-yourself supportUse internal experts
11
OpenLogic Company Confidential
Tip: Choose the right support for your needs
12
Internal expertsbacked by vendor support
Internal expertsbacked by community
Vendor support Vendor support or community support
Yes No
Lots
Limite
dMission-critical
Inter
nal e
xper
tise
OpenLogic Company Confidential
Roadblock: Different Acquisition Process
13
Determinerequirements
Determinerequirements
Research vendors
Research vendors RFI/RFPRFI/RFP In-depth
demoIn-depth
demo
TrialTrial CustomerreferencesCustomerreferences NegotiationNegotiation Legal &
ContractsLegal &
Contracts
Find a projectFind a project Download & try
Download & try Use itUse it
Traditional software – purchase process facilitated by vendor
Open source software – often no defined acquisition process
OpenLogic Company Confidential
Tip: Create a process for acquiring open source
Provide guidelines to developers on do’s and don’tsInvolve architecture, management, legal and procurementAutomate an approval processAudit to ensure compliance
14
Determinerequirements
Determinerequirements
Research projects
Research projects
Evaluate license
Evaluate license
Download & try it
Download & try it
Get approvalGet approval Find support vendors
Find support vendors Get quotesGet quotes Legal &
contractsLegal &
contracts
Open source software acquisition process
OpenLogic Company Confidential
Roadblock: Concerns About Risks of Open Source
SupportI can’t get support
QualityIt’s not high quality
SecurityIt’s not secure
IP OwnershipAn open source project used someone else’s code or patents
15
OpenLogic Company Confidential
Tip: Address Concerns
16
Concern Reality How to Address
Support Several support options are available, including commercial, SLA support
Research support vendors. Get a contract with and aggregated support providers.
Quality Quality of open source varies –but many projects are same quality as traditional, closed-source alternatives
Use certified open source. Read review and articles. Talk to other users about quality.
Security Open source is as secure as traditional, closed-source alternatives
Review security vulnerabilities for open source and compare to closed source software
IP Ownership Traditional closed source alternatives can have same problem.
Use certified open source. Purchase open source indemnification.
OpenLogic Company Confidential
Roadblock: Concerns About License Compliance
17
License proliferationHundreds of licenses: many similar licenses with modifications and vanity licenses
Multiple packages, multiple licensesPackages have multiple licenses. It’s difficult to be compliant when you don’t even know what you haveOpen source packages bundle other open source packages
IncompatibilityLicenses can be at odds with each other, need to know if there are conflicting obligations
ComplianceHow do you comply with the many terms and conditions of multiplelicenses?Ultimately you want to be compliant and protect yourself from possible infringement or non-compliance actions
OpenLogic Company Confidential 18
Tip: Distribution is Critical
Distribution triggers additional obligationsCopyleft provisions and others
Distribution makes it more likely you will get caughtSince others have access to your software
Distribution may be broader than you realizeDistribution is any transfer outside the walls of the organization.
Selling software containing OSSSelling HW or devices that run software containing OSSGiving away software containing OSSGiving software containing OSS to customersGiving software containing OSS to partnersEnabling download of software containing OSS
OpenLogic Company Confidential 19
Tip: Follow License Compliance Best PracticesGet “manifest” from developers
internal & 3rd partyValidate that “claimed” license is accurate
Look in source code, not just websiteScan software (binaries &/or source)
In early development phasesOn bringing in 3rd party codeBefore distribution
Review project dependencies and their licensesCompare license text to standard license test
Text may have been changedAdditional clauses may have been added
OpenLogic Company Confidential 20
Tip: Follow License Compliance Best Practices
Review licenses for obligationsLook for license conflicts
Search for lawsuits on projectsAssess potential modification/derivative work issues
Assess IP/Patent impactCreate “compliance checklist” for developers
Make sure to verify that checklist is completed
OLEX Enterprise Edition and OSS Discovery scanners can help.
OpenLogic Company Confidential 21
Best Practices: License Compliance
Create “compliance checklist” for developersDevelopers to implement checklistReview of checklist itemsFinal check to validate “Bill of Licenses”
OpenLogic Company Confidential
Hot Open Source Technologies You Should Consider
The Usual SuspectsLinux – There’s Not Just OneElephants in the Data CenterEnter the MatrixScripting: Not Just for Kiddies Any More
22
OpenLogic Company Confidential
The Usual Suspects
Apache, Tomcat, JBoss, MySQLOver 110m public Apache Web Servers1
Benefits:Developers: stable, well-documented, complywith industry standardsArchitects: widely deployed, easily supportedCIO’s: enterprise-ready, able to replace IBM WebSphere, WebLogic, Oracle DB in growing number of situations
1Netcraft.com – November 2009
23
OpenLogic Company Confidential
Tip: Step up use of “usual suspects”
These open source projects are ready for prime time in the enterprise
High quality, proven, scalableCommercial support available from multiple sourcesStrong and active communities
Add to your standards listMove your usage profile to “require evaluation” of these open source alternatives
Consider using for: Major new projectsReplacements or migrations from commercial closed-source
24
OpenLogic Company Confidential
Linux – There’s Not Just One
CentOSEnterprise Linux distro made from publicly available sources of RHEL, but without Red Hat logos & trademarksMajor releases: Available within 4-6 weeks of RHELPatches: Available within 72 hours of RHEL
OpenLogic offers support and OpenUpdateBenefits
Developers: familiar, runs all your current softwareArchitects: Binary-compatible with RHELCIO’s: significant cost savings over RHEL
25
OpenLogic Company Confidential
Tip: Get Started with Community Linux
Start evaluating CentOS and other community operating systems
CentOS for serversDebian, Ubuntu for desktops
Potential places to start:Departmental appsNon-mission criticalNot ultra high performance situations
Gain experience and expand as appropriateEvaluate commercial support options
26
OpenLogic Company Confidential
Elephants in the Data Center – Cloud Computing
Hadoop, HBase, and friendsBig deployments – Yahoo, Amazon, Facebook, Visa“Big Data”, MapReduce, and the NoSQL movementBenefits
Developers: don’t battle SQL when all you need is a big hash tableArchitects: freedom from RDBMS sharding and scaling nightmaresCIO’s: save $millions while solving critical business problems with private clouds
Gartner: Cloud #1, Advanced Analytics #2 for 201027
OpenLogic Company Confidential
Tip: Get educated and experiment
Get educated on open source cloud enablers (Hadoop, HBase, etc)
Are there places it applies in your business?Start experimenting with open source in clouds
Public clouds are a great place to experimentNew applicationsApplications with temporary demand spikesTesting
Consider private clouds as a way to harness idle computing cycles
28
OpenLogic Company Confidential
Enter the Matrix - Virtualization
Xen, KVM, VirtualBoxAmazon uses Xen on 1,000’s of EC2machinesLinux distros are bundling OSS hypervisorsGartner: 5.8m VM’s today, 58m by 2012Benefits
Developers: easy experimentation, testingArchitects: less hardware to buy, maintainCIO’s: save up to $100k/year per 500 machines converted in power and cooling costs alone1
1ComputerWorld – November 2009
29
OpenLogic Company Confidential
Tip: Use for testing and experimenting
Open Source Hypervisors are on par with commercial, closed-source equivalentsOSS Virtualization management tools are still catching upLook for places to deploy hypervisors
TestingExperimentingOther non-productionNon-mission critical production apps
30
OpenLogic Company Confidential
Scripting: Not Just for Kiddies Any More
Groovy, Ruby, Python, PHP, PerlScripting languages and key frameworksBenefits
Developers: be more productive, have more funArchitects: beat deadlines, react faster to changeCIO’s: show results while saving money
Twitter – Ruby/Rails Facebook – PHPLinkedIn – Groovy/Grails Google – Python
31
OpenLogic Company Confidential
Tip: Learn a new language
Java is not the only languageModern scripting languages excel at web applications Complementary to agile development processesLook at the modern object-oriented scripting languages and find one to add to your technology toolboxTry a test project and evaluate productivity gains and increase in agility
32
OpenLogic Company Confidential
Recap of Hot Open Source Technologies
The Usual SuspectsApache, Tomcat, JBoss, MySQL – big wins
Linux – There’s Not Just OneCentOS – same as today, but cheaper
Elephants in the Data Center – Cloud ComputingHadoop – broaden your horizons
Enter the Matrix - VirtualizationXen, KVM, VirtualBox – easier testing, cheaper deployment
ScriptingRuby/Rails, Groovy/Grails, Python/Django – be more agile
33
OpenLogic Company Confidential
Summary
Companies are shifting their use of open sourceFrom cautious management to proactive consideration
Put in place the policies, processes & infrastructure you need to use open source successfully
Certification & Acquisition processesSupport & Indemnification contractsLicense Compliance
Start looking at increased use of open source technologies
34
OpenLogic Company Confidential
Contact Information
Visit us onlinewww.openlogic.comolex.openlogic.comContact us via Email
[email protected]@openlogic.com
Follow us on Twitter@KimAtOpenLogic, @OpenLogic, & @OSSfix