Login | Register

Oswaldo: A Semantic Web Enabled Approach for Identifying Open Source License Violations


Oswaldo: A Semantic Web Enabled Approach for Identifying Open Source License Violations

Forbes, Christopher J. (2018) Oswaldo: A Semantic Web Enabled Approach for Identifying Open Source License Violations. Masters thesis, Concordia University.

This is the latest version of this item.

Text (application/pdf)
Forbes_MASc_F2018.pdf - Accepted Version
Available under License Spectrum Terms of Access.


Open source license violations are numerous, multifaceted, and pose significant risk to developers and companies in the form of litigation, sometimes resulting in millions in dollars in damages or settlements. Free/Libre and Open Source Licenses utilize copyright law and are written in legalese, which is often outside the scope of a developer’s expertise. Software Engineers commit violations of these licenses’ terms and conditions easily and often unknowingly. Consequently, increased knowledge, better tools, and sound processes to detect and prevent license violations are extremely important. This work is an investigation in the types of potential license violations that are committed, through direct and transitive dependency hierarchies in hundreds of thousands of real-world software projects. This thesis contributes a novel approach, entitled Oswaldo, that defines and detects three types of license conflicts: Type 1 Simple Violation, Type 2 Embedded Violations, Type 3 Compound Violations. Unidirectional compatibility/incompatibility relationships of major licenses are modelled. Ontologies and Linked Data are advantageously exploited to detect transitive violation Types 2 and 3, as well as the direct violation Type 1. This thesis also reports initial evaluations of these three types of license violations found in the Maven repository.

Divisions:Concordia University > Gina Cody School of Engineering and Computer Science > Computer Science and Software Engineering
Item Type:Thesis (Masters)
Authors:Forbes, Christopher J.
Institution:Concordia University
Degree Name:M.A. Sc.
Program:Software Engineering
Date:29 August 2018
Thesis Supervisor(s):Rilling, Juergen
Keywords:license violation, compatibility, incompatibility, transitive dependency, free/libre and open source software, semantic web, linked data, ontology, knowledge repository
ID Code:984563
Deposited On:16 Nov 2018 16:48
Last Modified:16 Nov 2018 16:48

Available Versions of this Item

All items in Spectrum are protected by copyright, with all rights reserved. The use of items is governed by Spectrum's terms of access.

Repository Staff Only: item control page

Downloads per month over past year

Back to top Back to top