FSFE Newsletter February 2019

This month's Newsletter is introducing our new expert policy brochure "Public Money? Public Code" and reflecting the importance of source code availability for trust and security in critical IT-infrastructure. As always the Newsletter gives an overview about the talks given and the booths set-up by our community as well as a short summary of what we have done - this month including FOSDEM, 35C3, FOSS4SMEs and the Next Generation Internet. As a "get active" item, this month we encourage you to participate in our IloveFS-campaign.

FSFE publishes expert brochure about “Public Money? Public Code!"

Convincing decision-makers why more public code would benefit us all should be easy. There are so many good arguments for putting publicly funded code under a Free Software licence: Tax savings, transparency, and innovation – just to name a few. But, in practice, we experience that there are still a lot of basics that need to be explained. Starting with: What is Free Software? Why should governments develop Free Software? What are Free Software business models? To answer these questions and give practical guidelines to decision-makers, we have published a policy brochure that presents the most important facts and arguments about publicly funded code.

This publication answers decision-makers' most common questions and refutes widespread misunderstandings about Free Software. In several articles and contributions from experts, the brochure presents successful Free Software use-cases and inspiring legislation that show that change is already taking place. Overall, the brochure provides practical guidance for moving the modernisation of public infrastructure forward and hints at how procurement guidelines can be updated to include the strong points of Free Software. Downloads and prints are available under a Creative Commons license

Among the contributions included in the brochure, that feature experts from various fields, is an interview with Francesca Bria, Chief Technology and Digital Innovation Officer for the City of Barcelona, who drives the modernisation of Barcelona's public infrastructure. She says: "The Barcelona City Council supports the FSFE's campaign 'Public Money, Public Code', because we need alliances to make Free Software the default setting in the public sector. The digital public infrastructure that we use should be a public good, owned and controlled by the citizens."

Help us with a donation to print and distribute the new FSFE expert policy brochure

About publishing source code to establish trust in critical infrastructure

In many countries, the Chinese company Huawei is facing distrust after allegations of potential state espionage. The company is one of the largest manufacturers of 5G equipment, the upcoming generation of cellular mobile communications. To ensure that the products and the underlying infrastructure are safe, network providers and politicians proposed an inspection of the equipment's source code. The FSFE welcomes this move to recognize the importance of source code availability , but is afraid that the proposed solution falls too short. Allowing inspection of the secret code by selected authorities and telephone companies might help in this specific case, but will not solve the general problem. Instead, to establish trust in critical infrastructure like 5G, it is a crucial precondition that all software code powering those devices is published under a Free and Open Source Software licence. On this basis, everyone can inspect the code, not only for backdoors, but for all security risks. Only these freedoms allow for independent and continuous security audits which will lead citizens, the economy, and the public sector to trust their communication and data exchange. Furthermore, in order to verify code integrity – so that the provided source code corresponds to the executable code running on the equipment – it is either necessary that there are reproducible builds in case of binary distribution, or that providers are brought into the position to compile and deploy the code on their own.

"We should not only debate the Huawei case but extend the discussion to all critical infrastructure." says Max Mehl, FSFE Programme Manager. "Only with Free and Open Source Software can transparency and accountability be guaranteed. This is a long-known crucial precondition for security and trust. We expect state actors to immediately implement this solution not only for the Huawei case but for all comparable IT security issues."

Join our community of freedom fighters!

What else have we done? Inside and Outside the FSFE On January 14 and 15, our project manager Gabriel Ku Wei Bin attended a kickoff meeting in Amsterdam of the Next Generation Internet project, funded by the European Commission and administered by the NLNet Foundation in the Netherlands. The FSFE joins the project to provide guidance to applicant technologies involved in the project to ensure that their final products are compliant with Free Software licensing best practices. On January 16 and 17 the FSFE's project managers Galia Mancheva and Max Mehl joined the FOSS4SMEs meeting in Dublin and shot videos for the online lessons the e-learning platform of the project is launching later this year. Stay tuned for further updates on the project’s website. Björn Schießle, FSFE coordinator for Germany, gave a talk on using strong copyleft to build a sustainable business at the Copyleft Conference on February 4th in Brussels. On January 23 Alexander Sander, the FSFE's EU public policy programme manager, joined a panel at Eurocieties Society Forum in Barcelona. Sander talked about how cities and public administration can foster Free Software and involve the local ecosystem in developing digital services based on Free Software and open standards. Paul Boddie writes about "An Absence of Strategy?" in which he argues that "installing Free Software over it" is no longer enough in the world of mobile devices. He claims that instead we need a strategy and an organisation that brings together collective efforts and practical action to identify ongoing projects and propose actual solutions towards constructing sustainable, community-driven, and user-protecting devices. Frank Karlitschek predicts that 2019 will be a very good year for privacy, open source and decentralized "cloud" software. It could be the year where Free Software, federated and self-hosted technology hits the mainstream. Björn Schießle wrote about Free Software being a "new cultural technique", a collective achievement done in a socio-cultural context, requiring social interaction and participation. And as such, it requires special attention by policy makers and society. Marcus Moeller, Country Coordinator of the FSFE in Switzerland, set up a Swiss association Faircomputer for which he and his contributors are collecting used Laptops. These devices are then checked, repaired, cleaned and equipped with Free Software. The refurbished machines are given away for free to interested people around Germany, Austria and Switzerland, only charging a small amount for the warranty to ensure they can be used without any hassle for years. Between Christmas and New Year, the FSFE was organising a cluster "about:freedom" together with like-minded organisations at the Chaos Communication Congress, the biggest community driven hacker congress in Germany. Inside the cluster, the FSFE was present with an assembly, a booth, and running its own track. From the FSFE we had Susanne speaking about her self-made "smartphone" (video), Katharina Nocun about data collecting Amazon (video) and Erik Albers about the best of Fdroid (video)

FSFE booth during 35C3, the 35th Chaos Communication Congress

In the beginning of February, the FSFE was present at FOSDEM, the biggest community-driven Free Software event in Europe. We had formal and informal meetings and social evenings, and were running an information booth throughout the event. On January 19, FSFE joined the Dutch Linux user group NLLGG meeting in Utrecht to set up a booth and have a chat about Free Software and related topics. Local FSFE community meetings happened this month in Hamburg, Bonn, Frankfurt (Main), Madrid, Zurich and Berlin. If you would like to see your local FSFE meeting listed here, please announce it with our improved event announcement tool. The European Commission expands its bug bounty programme called EU-FOSSA2. Software developers who find security vulnerabilities in the selected Free Software will be awarded between EUR 3,000 and EUR 25,000 for critical bugs. Do not miss: upcoming events with the FSFE The FSFE will be present with a booth at Chemnitzer Linuxtage from March 16 to 17 in Chemnitz, Germany, and is looking forward to having a chat with you about Free Software or FSFE. Erik Albers, programme manager for the FSFE will give a workshop about how to make the best of your Android(-fork) by using FDroid. If you like to get in contact beforehand or join the booth team, have a look at the discussion in our Discourse installation. Get Active

On February 14, our community around the globe celebrates "I love Free Software" Day. We would like to encourage you to be part of our online campaign by creating, sharing or simply enjoying love messages all around the world dedicated to Free Software and the people behind it. Enjoy the day, share and refuel your energy!

As in previous editions, we are looking forward to seeing you spreading all kind of materials, be they texts, pictures, graphics, scripts or whatever comes to your mind, to show your love to Free Software. Throughout the day, we will share your contributions around the globe on our media channels and collect them for a nice write-up about the love you have for our communities. If you share something, remember to use the hashtag #ilovefs, or if you happen to use the IloveFS visuals on your web platform, website or a blog, please, let us know, so we can include it in our stream.

Contribute to our newsletter

If you would like to share any thoughts, pictures, or news, send them to us. As always, the address is newsletter@fsfe.org. We're looking forward to hearing from you!

Thanks to our community, all the volunteers, supporters and donors who make our work possible. And thanks to our translators, who enable you to read this newsletter in your mother tongue.

Your editor, Erik Albers

Join our community of freedom fighters!

Support FSFE, join the Fellowship
Make a one time donation

Huawei case demonstrates importance of Free Software for security

The discussion of the Huawei security concerns showcases a general trust issue when it comes to critical infrastructure. A first step to solve this problem is to publish the code under a Free and Open Source Software licence and take measures to facilitate its independently-verifiable distribution.

The ongoing debate about banning Huawei hardware for the rollout of 5G networks, following earlier state espionage allegations, falls too short. It is not just about the Chinese company but about a general lack of transparency within this sector. As past incidents proved, the problem of backdoors inside blackboxed hard- and software is widely spread, independently from the manufacturers' origins.

However, it is unprecedented that the demand to inspect the source code of a manufacturer's equipment has been discussed so broadly and intensely. The Free Software Foundation Europe (FSFE) welcomes that the importance of source code is recognised, but is afraid that the proposed solution falls too short. Allowing inspection of the secret code by selected authorities and telephone companies might help in this specific case, but will not solve the general problem.

To establish trust in critical infrastructure like 5G, it is a crucial precondition that all software code powering those devices is published under a Free and Open Source Software licence. Free and Open Source Software guarantees the four freedoms to use, study, share, and improve an application. On this basis, everyone can inspect the code, not only for backdoors, but for all security risks. Only these freedoms allow for independent and continuous security audits which will lead citizens, the economy, and the public sector to trust their communication and data exchange.

Furthermore, in order to verify code integrity – so that the provided source code corresponds to the executable code running on the equipment – it is either necessary that there are reproducible builds in case of binary distribution, or that providers are brought into the position to compile and deploy the code on their own.

"We should not only debate the Huawei case but extend the discussion to all critical infrastructure." says Max Mehl, FSFE Programme Manager. "Only with Free and Open Source Software, transparency and accountability can be guaranteed. This is a long-known crucial precondition for security and trust. We expect from state actors to immediately implement this solution not only for the Huawei case but for all comparable IT security issues."

Support FSFE, join the Fellowship
Make a one time donation

Huawei case demonstrates importance of Free Software for security

The discussion of the Huawei security concerns showcases a general trust issue when it comes to critical infrastructure. A first step to solve this problem is to publish the code under a Free and Open Source Software licence and take measures to facilitate its independently-verifiable distribution.

The ongoing debate about banning Huawei hardware for the rollout of 5G networks, following earlier state espionage allegations, falls too short. It is not just about the Chinese company but about a general lack of transparency within this sector. As past incidents proved, the problem of backdoors inside blackboxed hard- and software is widely spread, independently from the manufacturers' origins.

However, it is unprecedented that the demand to inspect the source code of a manufacturer's equipment has been discussed so broadly and intensely. The Free Software Foundation Europe (FSFE) welcomes that the importance of source code is recognised, but is afraid that the proposed solution falls too short. Allowing inspection of the secret code by selected authorities and telephone companies might help in this specific case, but will not solve the general problem.

To establish trust in critical infrastructure like 5G, it is a crucial precondition that all software code powering those devices is published under a Free and Open Source Software licence. Free and Open Source Software guarantees the four freedoms to use, study, share, and improve an application. On this basis, everyone can inspect the code, not only for backdoors, but for all security risks. Only these freedoms allow for independent and continuous security audits which will lead citizens, the economy, and the public sector to trust their communication and data exchange.

Furthermore, in order to verify code integrity – so that the provided source code corresponds to the executable code running on the equipment – it is either necessary that there are reproducible builds in case of binary distribution, or that providers are brought into the position to compile and deploy the code on their own.

"We should not only debate the Huawei case but extend the discussion to all critical infrastructure." says Max Mehl, FSFE Programme Manager. "Only with Free and Open Source Software, transparency and accountability can be guaranteed. This is a long-known crucial precondition for security and trust. We expect from state actors to immediately implement this solution not only for the Huawei case but for all comparable IT security issues."

Support FSFE, join the Fellowship
Make a one time donation

La FSFE publie un guide d'expertise sur la campagne “Public Money? Public Code!"

Pourquoi les gouvernements devraient-ils développer du Logiciel Libre ? Où le Logiciel Libre procure-t-il déjà des avantages dans le secteur public ? Quels sont les modèles économiques du Logiciel Libre ? La réponse à ces questions ainsi que des conseils pratiques sont donnés dans le nouveau guide d'usage et d'expertise publié aujourd'hui par la Free Software Foundation Europe. Rédigé à l'attention des décisionnaires, ce guide sera une source d'information utile pour les candidats aux élections européennes et leurs partis. Les versions numérique et papier du document sont disponibles sous une licence Creative Commons.

Aujourd'hui la Free Software Foundation Europe (FSFE) publie sa brochure stratégique, "Public Money Public Code - Modernising Public Infrastructure with Free Software". Cette brochure vise à répondre aux questions des dirigeant·e·s sur les avantages à utiliser et produire du Logiciel Libre pour les administrations publiques. Pour souligner le rôle important qu'ont les marchés publics en la matière, la brochure présente un panorama de projets et de politiques européennes sur le logiciel libre, qui éclairent le contexte législatif de la passation de marchés de produits logiciels. La FSFE utilisera cette brochure lors des élections européennes à venir, pour informer les députés européens sur la manière d'accélérer la diffusion et le développement de Logiciel Libre dans les administrations publiques, en mettant en place la législation appropriée.

À propos de la brochure

La brochure évalue la modernisation des infrastructures publiques à l'aide du Logiciel Libre, du point de vue de l'éducation, de la loi, des affaires et des institutions gouvernementales. Des articles spécialisés, des rapports et des interviews aident les lecteurs à comprendre les avantages du Logiciel Libre pour les administrations publiques. Au niveau décisionnel, des conseils pratiques sont également fournis pour aider les responsables à initier la modernisation des infrastructures publiques avec les Logiciels Libres.

Le Président de la FSFE Matthias Kirschner déclare : "Les licences des Logiciels Libres ont démontré leur apport immense au secteur public. Ce n'est pas une tendance passagère, mais bien un développement de à long terme qui se base sur des expériences très positives, et des considérations stratégiques issues de situations préoccupantes résultant de cas de verrouillage/cloisonnement commercial par le passé. Dans quelques années, les licences de Logiciel Libre pourraient devenir la clause par défaut pour les projets informatiques financées par des fonds publics. La Free Software Foundation Europe observe ces développements avec beaucoup d'attention, et nous souhaitons apporter notre expertise pour soutenir le secteur public dans cette transition."

Les premiers pas pour faire des licences de Logiciel Libre le choix par défaut dans les projets informatiques sur fonds publics sont expliqués dans la brochure. Y sont également traités la concurrence et le verrouillage commercial, la sécurité, la démocratie, les "smart cities" et d'autres débats importants du moment. Le vocabulaire et les exemples utilisés ont été choisis spécifiquement pour les personnes impliquées dans la vie politique et les administrations publiques. Si vous êtes intéréssé·e ou cherchez un support papier de qualité professionnelle pour défendre vos arguments, procurez-vous un exemplaire :

Télécharger au format PDF Commander un exemplaire papier

La brochure met en avant des experts à la pointe dans le domaine des TIC (Technologies de l'Information et de la Communication). Vous y trouverez, parmi d'autres, Francesca Bria - Chief of Technology and Digital Innovation Officer (CTIO) de la mairie de Barcelone City Council, le Pr. et Dr. Simon Schlauri - auteur d'une analyse légale détaillée sur les avantages du Logiciel Libre pour le canton suisse de Berne, Cedric Thomas – CEO de OW2, Matthias Stürmer – Chef du Centre de Recherche pour la Pérennité Numérique à l'Université de Berne, et Basanta Thapa – du Centre de Compétences pour l'Informatique Publique (ÖFIT) au sein de l'Institut Fraunhofer pour les Systèmes de Communication Ouverts. La brochure est diffusée sous forme numérique et imprimée, et est publiée sous une licence CC BY-SA 4.0.

À propos de la campagne

Avec la campagne 'Public Money, Public Code' (Argent public Code Public), la FSFE demande que les logiciels développés pour le secteur public avec des fonds publics soient être diffusées publiquement sous licence de Logiciel Libre et Open Source (FLOSS). La lettre ouverte de la campagne a récolté jusqu'ici plus de 19 000 signatures, ainsi que le soutien de plus de 150 organisations. Si c'est de l'argent public, alors le code devrait être public aussi !

Support FSFE, join the Fellowship
Make a one time donation

La FSFE publie un guide d'expertise sur la campagne “Public Money? Public Code!"

Pourquoi les gouvernements devraient-ils développer du Logiciel Libre ? Où le Logiciel Libre procure-t-il déjà des avantages dans le secteur public ? Quels sont les modèles économiques du Logiciel Libre ? La réponse à ces questions ainsi que des conseils pratiques sont donnés dans le nouveau guide d'usage et d'expertise publié aujourd'hui par la Free Software Foundation Europe. Rédigé à l'attention des décisionnaires, ce guide sera une source d'information utile pour les candidats aux élections européennes et leurs partis. Les versions numérique et papier du document sont disponibles sous une licence Creative Commons.

Aujourd'hui la Free Software Foundation Europe (FSFE) publie sa brochure stratégique, "Public Money Public Code - Modernising Public Infrastructure with Free Software". Cette brochure vise à répondre aux questions des dirigeant·e·s sur les avantages à utiliser et produire du Logiciel Libre pour les administrations publiques. Pour souligner le rôle important qu'ont les marchés publics en la matière, la brochure présente un panorama de projets et de politiques européennes sur le logiciel libre, qui éclairent le contexte législatif de la passation de marchés de produits logiciels. La FSFE utilisera cette brochure lors des élections européennes à venir, pour informer les députés européens sur la manière d'accélérer la diffusion et le développement de Logiciel Libre dans les administrations publiques, en mettant en place la législation appropriée.

À propos de la brochure

La brochure évalue la modernisation des infrastructures publiques à l'aide du Logiciel Libre, du point de vue de l'éducation, de la loi, des affaires et des institutions gouvernementales. Des articles spécialisés, des rapports et des interviews aident les lecteurs à comprendre les avantages du Logiciel Libre pour les administrations publiques. Au niveau décisionnel, des conseils pratiques sont également fournis pour aider les responsables à initier la modernisation des infrastructures publiques avec les Logiciels Libres.

Le Président de la FSFE Matthias Kirschner déclare : "Les licences des Logiciels Libres ont démontré leur apport immense au secteur public. Ce n'est pas une tendance passagère, mais bien un développement de à long terme qui se base sur des expériences très positives, et des considérations stratégiques issues de situations préoccupantes résultant de cas de verrouillage/cloisonnement commercial par le passé. Dans quelques années, les licences de Logiciel Libre pourraient devenir la clause par défaut pour les projets informatiques financées par des fonds publics. La Free Software Foundation Europe observe ces développements avec beaucoup d'attention, et nous souhaitons apporter notre expertise pour soutenir le secteur public dans cette transition."

Les premiers pas pour faire des licences de Logiciel Libre le choix par défaut dans les projets informatiques sur fonds publics sont expliqués dans la brochure. Y sont également traités la concurrence et le verrouillage commercial, la sécurité, la démocratie, les "smart cities" et d'autres débats importants du moment. Le vocabulaire et les exemples utilisés ont été choisis spécifiquement pour les personnes impliquées dans la vie politique et les administrations publiques. Si vous êtes intéréssé·e ou cherchez un support papier de qualité professionnelle pour défendre vos arguments, procurez-vous un exemplaire :

Télécharger au format PDF Commander un exemplaire papier

La brochure met en avant des experts à la pointe dans le domaine des TIC (Technologies de l'Information et de la Communication). Vous y trouverez, parmi d'autres, Francesca Bria - Chief of Technology and Digital Innovation Officer (CTIO) de la mairie de Barcelone City Council, le Pr. et Dr. Simon Schlauri - auteur d'une analyse légale détaillée sur les avantages du Logiciel Libre pour le canton suisse de Berne, Cedric Thomas – CEO de OW2, Matthias Stürmer – Chef du Centre de Recherche pour la Pérennité Numérique à l'Université de Berne, et Basanta Thapa – du Centre de Compétences pour l'Informatique Publique (ÖFIT) au sein de l'Institut Fraunhofer pour les Systèmes de Communication Ouverts. La brochure est diffusée sous forme numérique et imprimée, et est publiée sous une licence CC BY-SA 4.0.

À propos de la campagne

Avec la campagne 'Public Money, Public Code' (Argent public Code Public), la FSFE demande que les logiciels développés pour le secteur public avec des fonds publics soient être diffusées publiquement sous licence de Logiciel Libre et Open Source (FLOSS). La lettre ouverte de la campagne a récolté jusqu'ici plus de 19 000 signatures, ainsi que le soutien de plus de 150 organisations. Si c'est de l'argent public, alors le code devrait être public aussi !

Support FSFE, join the Fellowship
Make a one time donation