Prpose
The OpenChain Project publishes ISO/IEC 5230, the standard for open source license compliance, and ISO/IEC 18974, the standard for open source security assurance. It provides self-certification checklists and a conformance process that allow companies to self-verify whether they meet either standard.
With self-certification, companies can determine what is missing and what additional activities are required. If a company with a well-established open source compliance system can answer Yes to all inquries in the ISO/IEC 5230 or ISO/IEC 18974 self-certification questionnaire, this can be submitted on the website (Conforming Submission). This will allow you to be recognized as a Conformant company for that standard, as well as add your company’s logo to the list of companies with conformant programs on the website of the OpenChain project.
The Conformance Group is to study and share the best practices and activities that companies must undertake to build these ISO/IEC 5230 and ISO/IEC 18974 Conformant programs.
If you are an open source person in charge of a company looking to build an ISO/IEC 5230 or ISO/IEC 18974 Conformant program, please contact Conformance Group!
Subscribe
Conformance Group is open to any OpenChain KWG member interested in building an ISO/IEC 5230 or ISO/IEC 18974 Conformant program. Please apply for membership by e-mail to the group Lead (Haksung Jang, haksung@sk.com).
mailing list
The Conformance Group communicates through mailing lists. You can send inquiry/request emails to all members of the Conformance Group at the email address below.
Meeting
Conformance Group meets irregularly when discussion is necessary. Refer to the following for the meeting results.



