Vi har glädjen att presentera Andrew Katz som talare på konferensen.
Presentation:
The Cyber Resilience Act: how cybersecurity regulation could be good for open source development, sustainability and competitiveness (Andrew Katz, Högskolan i Skövde, Queen Mary College – University of London & Bristows LLP, London, UK)
Sammanfattning:
The success of open source is attributed to the reduction of friction: in licensing but also in other factors in the development process, such as the widespread and inexpensive availability of tooling (such as compilers); collaborative development platforms (such as GitLab and GitHub) and the relatively low cost of suitable computing hardware).
Regulation, therefore, is often seen as reintroducing friction to the detriment of open source development, and the potential to cause a chilling effect on the willingness of individual developers to participate. Andrew Katz argues that the marginal increase in the cost of access to CRA-compliant software components (in comparison with the recognised economic benefits to manufacturers of their use) will generate a revenue stream which can potentially be of benefit to open source projects. The emergence of competing commercial entities as well as open source foundations (open-source software stewards) in the open source ecosystem provides an opportunity for a free market to provide the information, attestations and commercial warranties and indemnities necessary to comply with these regulations (to the overall benefit of all EU citizens making use of software which will be cyber-secure) on a competitive and cost-effective basis. A weakness of open source has been perceived to be the ease of commercial entities to make use of open source without necessarily contributing resources to the developers who create and maintain the code. The CRA therefore provides a framework which addresses this issue, which will in turn drive the creation of ever more secure software, whether deployed on premise, in the cloud, or otherwise in electronic connected devices.
Biografi:
With over 30 years’ experience in the technology field, Andrew Katz is a prominent free and open-source software lawyer. He regularly advises clients on technology law, computer software licensing and distribution, open source licensing, business structures and compliance, open hardware licensing, open data, the legal aspects of AI, and particularly IP and regulatory aspects of large language models. Andrew’s clients range across the spectrum of startups to multinationals and he also advises foundations, public sector bodies, academic institutions and trans-national bodies.
Andrew is an Honorary Professor of Law at Queen Mary College, University of London where he teaches Open Source law. He is co-author of Open Source Law, Policy and Practice published by Oxford University Press in 2022, as well as a number of other books and papers on open source law and technology law. He is currently a visiting researcher on standards and open source at the University of Skövde, Sweden. He has also recently launched an initiative to manage risk in the open source and AI software supply chains, through the structures of process, procedure and insurance.