"OW2's position on the CRA is clear: **we are not trying to get all of open source out of scope, but CRA should only apply to direct commercial beneficiaries of OSS deployment.**"

https://www.ow2.org/view/Events/Cyber_Resilience_Act_European_Commission_Comments_Reactions

#CRA #OpenSource #Policy

The Cyber Resilience Act is being finalised in the next two weeks, despite the parts that could deeply harm #OpenSource. Rather than suggesting changes to the #CRA (plenty of others doing so), here's an article explaining why changes are still necessary despite the 11th hour.

https://blog.opensource.org/diverse-open-source-uses-highlight-need-for-precision-in-cyber-resilience-act/

#SoftwareFreedom #FOSS #FLOSS #Policy @EU_Commission

"Open source software is software released under a license that — by community consensus — grants all rights necessary to use, improve, share and monetise the software in any way and for any purpose subject only to conditions that can be reasonably satisfied without negotiation with the licensors."

https://the.webm.ink/defining-open-source

#OpenSource #Policy
@osi @EUCommission@social.network.europa.eu @ECOSPO@social.network.europa.eu

For all of you busy preparing manifestos for forthcoming elections, here is a #FreeCulture #policy proposal:

> For all published artefacts using DRM, there needs to be a legal method for expiring the lock - or circumventing the DRM - once the period of all relevant copyrights has expired, otherwise future generations would not be able to access these artefacts.

If backdoored E2EE is possible then backdoored DRM should be easy too, right?

Will the UK's Online Safety Bill cause a cyber-Brexit? Seems likely.

https://alecmuffett.com/article/57060

#encryption #Policy

Near Oslo? I will be joining @isocnorway for a discussion about the Cyber Resilience Act #CRA (and other #policy and #legislation) and its potential impact on #OpenSource on Saturday 22nd April.

https://isoc.no/event/will-the-coming-eu-regulations-kill-open-source/

It's good news that the European Commission considering the value & needs of #OpenSource in its #policy deliberations, but the Commission needs to extend its consultations, Expert Groups and other work to include and consider the fourth sector.
https://the.webm.ink/consulting-the-fourth-sector

The @EU_Commission wants evidence of EU case law relating to exclusionary abuses of dominant market positions, so it can create harmonised enforcement guidelines. The feedback period ends April 24th. Feedback is free-format.

https://ec.europa.eu/info/law/better-regulation/have-your-say/initiatives/13796-Guidelines-on-exclusionary-abuses-of-dominance_en

#OpenSource #Policy

EU #policy people say not to worry about #CRA compliance because the EU #standards bodies will streamline it. But the ESOs are corporate-controlled, patent-loving & expensive to engage. Shouldn't the EU address this if they want #OpenSource accommodated?
https://the.webm.ink/cra-compliance-engaging-standards-bodies

The US National Cyber Security Strategy has one thing so right I am cheering.
https://www.whitehouse.gov/wp-content/uploads/2023/03/National-Cybersecurity-Strategy-2023.pdf

#OpenSource #Security #Policy

In the European Commission's workshop for Digital Market Act stakeholders concerning messaging interoperability. The opening explained the workshop is for stakeholders to talk to each other and the Commission will not take any positions.
#Policy #DMA

Proprietary software is made in secret. Open source software is made in public. So rules that assume they are dealing with consumer-facing products because the code is public will discriminate unnecessarily against #OpenSource.

Let's fix that in the #CRA and wider #policy.
https://the.webm.ink/fixing-the-cra-for-open-source

Biden’s State of the Union Defines Climate Action as Common Sense

https://time.com/6254095/biden-climate-action-sotu-2023/ #healthscienceclimate #ClimateIsEverything #Uncategorized #climatechange #policy

A number of #OpenSource organisations submitted their concerns about the proposal from @EU_Commission for a Cyber Resilience Act, most because the attempt to exclude open source communities from its effects is so poorly conceived that it could actually make things worse.
https://ec.europa.eu/info/law/better-regulation/have-your-say/initiatives/13410-Cyber-resilience-act-new-cybersecurity-rules-for-digital-products-and-ancillary-services/F3376663_en

/cc @EC_OSPO
#Policy #Legislation #Cyber #Security #SBOM

The Eclipse Foundation has studied the Cyber Resilience Act and is very worried about the implications for open source foundations.

https://eclipse-foundation.blog/2023/01/15/european-cyber-resiliency-act-potential-impact-on-the-eclipse-foundation/

#CRA #OpenSource #Policy

A Chaotic Congress Bodes Poorly for U.S. Climate Policy

https://time.com/6247042/kevin-mccarthy-chaos-climate-policy/ #healthscienceclimate #ClimateIsEverything #Uncategorized #climatechange #policy

#Policy Federati: Does a block list that builds a wall between the MAGA #Fediverse and the rest of us breach the Digital Markets Act by preventing interoperability? Is the resulting loss of social graph mobility also illegal?

(Update: I am aware that no current Fediverse platform qualifies as a Gatekeeper Platform. Imagine when some do 🙂 )

After Radical Climate Activists Say ‘We Quit’ to Disruptive Protests, 2023’s Climate Action Will Look Different

https://time.com/6244805/climate-protest-extinction-rebellion-future/ #healthscienceclimate #ClimateIsEverything #Uncategorized #climatechange #policy

The #OnlineSafetyBill is still in play in the UK, and still contains deeply concerning aspects despite much revision, notably requiring age verification (which could amount to a need for ID cards to access the Internet) and a requirement for platforms to inspect content (which could ban effective encryption).

This is a decent summary: https://www.gp-digital.org/the-return-of-the-uks-online-safety-bill-whats-changed-and-whats-next/

@openrightsgroup are on the case too, although their singular focus on encryption may backfire. https://www.openrightsgroup.org/campaign/save-encryption/

#policy

I will be participating in the EU Open Source Summit in Brussels on February 3rd (the Friday before FOSDEM.

#OpenSource #Policy #Conference #FOSDEM