Session
FOSDEM 2021 Schedule
Legal and Policy Issues

The first AGPL compliance case settled in an Italian Court: a tale of compliance, license compatibility and source code availability

Globaleaks is an AGPLv3+ SaaS application for anonymous whistleblowing, developed by the Hermes Center. After receiving a prototype, the Italian Anticorruption authority (ANAC) re-published a version under EUPL, modifying attribution & copyright statement, removing reasonable notice from GUI, and failing to fully comply with source code obligations. The controversy was brought to Court and eventually settled, restoring the correct license, and patching the other issues. Several lessons learned.
Globaleaks is an AGPLv3+ SaaS application for anonymous whistleblowing, developed by the Hermes center for transparency and digital human rights. After receiving a prototype, the Italian Anticorruption authority (ANAC) re-published a modified version (developed via a public tender) under EUPL, modifying attribution & copyright statement, removing reasonable notice from GUI, and failing to fully comply with the obligation to convey the corresponding source code. After several attempts for an off-court solution, the question was finally settled by the parties, restoring the correct license, and the other issues. There are several lessons to be learned by this controversy. License compatibility and the other free software obligations (including conveying the corresponding source code) are not to be taken lightly, and require a good degree of knowledge and expertise, especially when they are related to an application which has been implemented by several Public administrations Speakers: Carlo Piana - Lawyer with 25+ years experience in IT, former GC for FSFE and member of the Council of its Legal Network, serves as member of IP&OS advisory of UNTIL (United Nations). President of euroITcounsel, editor of Jolts (formerly Ifosslr). Fabio Pietrosanti - Naif (Project leader) - Fabio Pietrosanti has been part of the hacking digital underground with the nickname “naif” since 1995, while he’s been a professional working in digital security since 1998. President and co-founder of the Hermes Center for Transparency and Digital Human Rights, he is active in many projects to create and spread the use of digital tools in support of freedom of expression and transparency. Member of Transparency International Italy, owner of Tor’s anonymity nodes, Tor2web anonymous publishing nodes, he is among the founders of the anonymous whistleblowing GlobaLeaks project, nowadays used by investigative journalists, citizen activists and the public administration for anti-corruption purposes. He is an expert in technological innovation in the field of whistleblowing, transparency, communication encryption and digital anonymity. As a veteran of the hacking and free software environment, he has participated to many community projects such as Sikurezza.org, s0ftpj, Winston Smith Project, Metro Olografix, among others. Professionally, he has worked as network security manager, senior security advisor, entrepreneur and CTO of a startup in mobile voice encryption technologies. Giovanni Battista Gallus - Lawyer, ISO27001 Lead Auditor, freesoftware advocate, Former President of @CircoloGT, Nexa Fellow. ITLaw, privacy, security & drones. Copyright, Criminal, Data Protection/Privacy and IT law are his main areas of expertise. In the last years, he is devoting a significant part of his practice to the legal aspects of UAVs (drones) After a cum laude degree in Law in Italy, he moves to Great Britain for the Master of Laws in Maritime Law e Information Technology Law at the University College London - UCL. Afterwhile, he earns a PhD. In 2009 he obtains the European Certificate on Cybercrime and Electronic Evidence (ECCE). He is ISO 27001:2013 Certified Lead Auditor (Information Security Management System). Member of the Bar of Cagliari since 1996, admitted to the Supreme Court since 2009, Data Protection Officer, he is a fellow of the Department "Informatica Giuridica" at the Università Statale of Milan where he teaches in the Post-Graduate Course in Digital Forensics and cybercrime. He also teaches at the Master for Data Protection Officers, organized by the Politecnico of Milan. Fellow of the Nexa Center on Internet and Society and of the Hermes Center for Transparency and Digital Human Rights. Author of several publications on the above mentioned areas and speaker at the main national and international congresses, he sides his legal profession an intense teaching activity, mainly in the field of copyright, Free/Open Source Software, data protection, IT security, digital forensics and drones. Alberto Pianon - IT Lawyer with 10+ years experience in open source licensing and compliance, LL.M. in Law & Economics, member of the Legal Network of the FSFE.

Additional information

Type devroom

More sessions

2/6/21
Legal and Policy Issues
D.legal
On October 21st 2021, the European Commission approved the new Open Source Software Strategy 2020-2023 of the Commission. We will interview Evangelos Tsavalopoulos on this.
2/6/21
Legal and Policy Issues
D.legal
Free and open source software is made up of a truly global community of tinkerers, collaborators and innovators. In this conversation, Deb Nicholson and Hong Phuc Dang will look at the global state of open source policy and talk about why no particular country -- especially the US -- should be centered. So, let's make sure the conversation about the future of open source is a truly global one!
2/6/21
Legal and Policy Issues
D.legal
Software and Hardware Freedom in Health Public Policy On this panel, we will discuss the extent to which the use of Free Software and open hardware can be used in the public health sector. Software and hardware can help to solve global problems together. The wheel does not always have to be reinvented and through cooperation common innovation can succeed.
2/6/21
Legal and Policy Issues
Sven Franck
D.legal
Financing open source using tax breaks on donations made to endowment funds or general interest associations is a construct available in France and a viable alternative to R&D expenditures for sponsoring open source projects. We will present several initiatives from the Libre Endowment Fund ("Fonds de Dotation du Libre" in French) - from financing feature development of open source software to releasing a 4G/5G base station as open source hardware or supporting litigation against the French ...
2/6/21
Legal and Policy Issues
D.legal
Compliance with Open Source and Free Software licenses remains a perennial topic of discussion among policy makers in our community. However, little attention is paid to the motivations why these licenses have specific requirements. Specifically, at least for copyleft licenses, the licenses seek to bestow specific rights and freedoms to the users who receive the software integrated into the devices they use. This panel, containing a group of industry experts, consultants, and license enforcement ...
2/7/21
Legal and Policy Issues
Vittorio Bertola
D.legal
The Internet originally thrived on interoperable services - until the "walled gardens" came. The European Commission recently proposed new regulations (DSA/DMA/DGA) to protect democracy and restore openness and competition. The talk will introduce them and their economic and political background; it will then focus on a specific point, the requirement for dominant platforms to interoperate with third parties, though only in limited cases, using messaging and social media as example.
2/7/21
Legal and Policy Issues
Cornelius Schumacher
D.legal
When the initial release of Qt was published in 1995, it was one of the first projects to use a dual-licensing model. This model, LGPL and a proprietary commercial license today, has served the project well for more than 25 years. It is less well known that the dual-licensing model is supported by a community contract which guarantees the freedom of Qt beyond what is in the license covered. This contract is maintained by the KDE Free Qt Foundation and has kept Qt free through multiple ...