Welcome!

Microservices Expo Authors: Stackify Blog, Aruna Ravichandran, Dalibor Siroky, Kevin Jackson, PagerDuty Blog

Related Topics: Linux Containers, Java IoT

Linux Containers: Article

i-Technology Viewpoint: Mark My Words - Trademarks and Open Source

i-Technology Viewpoint: Mark My Words - Trademarks and Open Source

In programmer heaven, all software is open source software. Solving problems is as easy as downloading the code you need - none of which comes with any nasty copyright baggage - and the only part you need to write for yourself is the coolest, most interesting algorithm, which compiles, runs, and works on the first try. Naturally, there aren't software patents in heaven, either: I don't think there are any patent examiners who could get through the pearly gates, do you?

When you get there though, I would think twice about using that little red hat logo.

Programmers, now politicized by the free software movement, spend a lot of time arguing about copyrights and patents - whether they're morally right or wrong and how widely they should be enforced. But they don't think much about trademarks. Trademarks, in a way, are the most bulletproof form of intellectual property: more effective than copyright, cheaper to enforce than patents.

What's in a Trademark?

Trademarks are really all about consumer protection. This is why trademark laws are so strong and the penalties for violating them can be so high. When you infringe a trademark, you're not just hurting the owner of the trademark, you're hurting all consumers, everywhere. There are two basic kinds of trademark infringement: passing off and reverse passing off. If you write your own operating system from scratch and call it Red Hat Linux, don't answer the doorbell. That's called "passing off" your goods as those of another - in this case a company with a valuable trademark and a strong reputation, whose lawyers will be paying you a visit.

If you take Red Hat Linux and repackage it unadulterated as God Bless You-nix, that's reverse passing off, or claiming another's product as your own. In each case, consumers are being fooled as to the source of what they are buying.

Trademarks in the Open Source World

All of this works pretty much as expected in a commercial setting. However, when it's combined with an open source software model, things get a bit, well, interesting. For instance, by definition, any open source software project lets you modify and distribute its software royalty-free. But most open source projects will be more conservative about letting you use their trademarks. Take a look at the policies for the use of the red hat, the GNOME footprint, the Debian swirl, or the Mozilla red lizard (www.redhat.com/about/trademark_guidelines.html, http://mail.gnome.org/archives/foundation-list/ 2003-November/msg00098.html, www.debian.org/logos/, and www.mozilla.org/foundation/licensing.html, respectively). All of them impose some kind of criteria for products bearing the mark. These criteria range from quality, to interoperability, to the amount of open source code the product contains.

The most popular logo in the open source world, of course, is the penguin named "Tux." This trademark has not been managed with systematic trademark use policies. Consequently, the reputation and trademark strength associated with the mark are weak. The use of the penguin has provided fodder for plenty of amusement (see the discussion of the meaning and history of Tux on http://en.wikipedia.org/wiki/Tux), but it is not consistently applied. The most common representation is the bowling-pin shaped tuxedo-marked cartoon bird designed by Larry Ewing, but even the average computer programmer, much more so than the average consumer, would be hard pressed to tell you exactly what product it represents. The only conditions for use of this logo are acknowledgment of the author of the logo - no conditions regarding the product on which it is placed. This type of condition is associated more with copyright than trademark.

There is, of course, a copyright in the appearance of any logo. But a logo that represents neither a source for products nor a level of quality for products is, in the end, not really a trademark. Tux is usually described by the software community as a mascot rather than a trademark, and that's probably closer to the truth.

"Linux," on the other hand, is a trademark registered by Linus Torvalds. The use of the Linux mark is policed by the Linux Mark Institute, www.linuxmark.org. The institute was created after a dispute over ownership of the trademark arose. This dispute arose because the mark was not being policed and was not registered - a state of affairs that allowed others to claim rights in it. Linux has been used more consistently than the Tux logo. However, some would argue that it's generic.

Confusion over what constitutes a "Linux" product is evidenced by the ubiquitous reexplanation of the difference between Linux and GNU/Linux.GNU describes a set of tools promulgated by the GNU Project. These tools are usually part of a product distribution that contains the Linux kernel. See Wikipedia's definition of "Linux": "Strictly, the name Linux refers only to the Linux kernel, but it is commonly used to describe entire Unix-like operating systems (also known as GNU/Linux) that are based on the Linux kernel and libraries and tools from the GNU project" (http://en.wikipedia.org/wiki/Linux).

We see that the open source business community handles the issue of passing off much as any other industry. They do the same for reverse passing off. Even the most noncommittal of open source agreements, the BSD license, contains an express statement limiting your right to use trademarks. For instance, the form of BSD license available on the Open Source Initiative Web site says: "Neither the name of the <ORGANIZATION> nor the names of its contributors may be used to endorse or promote products derived from this software without specific prior written permission." In other words, no trademark license. This might lead you to think that any organization granting such a license is not worrying about reverse passing off. Remember, though, that even the BSD license requires you to display appropriate copyright notices, and earlier versions contained the "advertising requirement" that became so unpopular and disused in the open source community.

There is a good reason for the similarities between trademarks in the open source world and in the rest of the business world. It's not because open source projects are trying to give with one hand and take away with the other. Trademark law is different from copyright or patent law. It is, loosely put, a "use it or lose it" regime. To be more accurate, it's a "use it correctly, or lose it" regime. This rule, in legalese, is called dilution or blurring. If you own a trademark, and you let others use it on their products without supervision, you will eventually lose your rights in it. The legal way of putting this is that a trademark owner must exercise quality control, or his trademark rights may be diluted to the point that his trademark rights are no longer enforceable. The hobby horse example here is "aspirin," once a trademark, now a generic designation with no trademark value.

While an open source license may give you complete freedom to modify and distribute code, it can never give you freedom to distribute modified code under the licensor's trademark, or the rights in the trademark will eventually evaporate - an event that will benefit no one. Remember that this is all about consumer protection. If consumers trusted Red Hat to distribute a robust, reliable product, and Red Hat let everyone use its name, consumers would no longer know if they could trust a product called "Red Hat." That's dilution in a nutshell.

When the Sky Fell

I know what you're thinking: I worry too much. If you think open source and trademarks can't collide, think again. Once upon a time, AT&T licensed Unix to lots of universities in source code form, and those universities openly shared improvements and adaptations of the code. Translation: Unix was very much like an open source product, though that phrase would not be coined for another 20 years. One of the recipients of Unix was the University of California at Berkeley, which modified Unix extensively, most notably developing networking code that made Unix work with TCP/IP-based networking products. Then AT&T stopped licensing the Unix source code, turned Unix into a proprietary product, and began charging high prices for licenses. Berkeley, responding to popular demand, began distributing its own version of Unix, called "Networking Release 1," under the BSD license. (To be precise, the facts were more complicated. Berkeley tried to engineer all of AT&T's copyrightable code out of the product. Whether they succeeded is a moot point, given the disposition of the lawsuit.)

A few versions later, Berkeley Software Design, Incorporated, was formed to distribute a commercially supported version of the Berkeley code. That product, sensibly, was known as BSD Unix. AT&T released its own, closed-source, version of Unix, System V. But BSDI was selling its open source product for 90% less. So AT&T sued BSDI, making both copyright and trademark claims. The court found that AT&T had lost its copyright interest in the Unix code used by Berkeley. The case was settled. Essentially, BSDI won. But BSDI promptly agreed to stop using the trademark Unix. (Once again, the facts were debated. Whether BSDI actually used the Unix trademark in an infringing way was disputed - and mooted by BSDI's agreement to cease using the mark.)

The moral of the story is that copyrights are fragile. They can be lost and engineered around. (It is not so easy to lose them today. AT&T lost its copyright under the pre-1978 rule, under which publication without copyright notice caused a work to fall into the public domain. This rule has changed; today, a positive statement ceding a work to the public domain is necessary to lose a copyright.) Patents, too, can be engineered around, and half of them are invalidated when their owner tries to enforce them. Patents, and to a lesser degree copyrights, can expire, but trademarks can last forever. Trademarks claims are often so fearsome that a defendant in a trademark infringement suit will give up without a fight. BSDI fought AT&T's copyright claims and won. It gave up the trademark battle with barely a squeak.

The sky fell once. Having to change brands in midstream is the business equivalent of the sky falling. A company's trademark is usually considered its most important and valuable piece of intellectual property. The conventional wisdom is that the single most valuable piece of intellectual property in the world is the trademark Coca-Cola - not the formula for the product, the trademark. Changing a trademark for a successful product can be more expensive and more damaging to the value of a business than reengineering the product. Part of this is a cautionary tale. Never assume that you can use a trademark with impunity, even when you have a license to use the copyrights that form the basis of the trademarked product. The open source projects that control the red hat, the footprint, and the lizard will not let you do that. They can't, because they are the custodians of those marks for the consumer's benefit.

The Next Battleground?

This is more than a cautionary tale; it's a peek into the realities behind how intellectual property works for open source in the business world. Ask anyone how to make money in the open source space and they will tell you roughly the same thing: services, support, and widget frosting. Are those things protected by copyright or patent? Maybe, maybe not. But they are definitely protected by trademark. Companies can, arguably, exercise even more control over their licensees via trademark than they can via copyright. Trademark owners can - and must - supervise all use of their marks. Supervision, however, is anathema to free software, which is premised on the ability to modify software freely, without supervision.

All this would not be so troubling, but the idea of officially sanctioned versions is, in a way, even more important in the open source world than it is elsewhere. In the open source world, reputation is everything.

Skeptics often ask what keeps open source code from forking infinitely. After all, everyone has the right to create his or her own version of open source code. To those familiar with open source, the answer is simple: people trust the official releases of open source code because of the reputation of the gatekeepers of the source tree. Remember, trademark is the same as reputation. Some forking has taken place in the open source world, and trademark battles have not ensued. But what if two factions wanted to release competing versions of Linux - or any other open source project? Which faction would get the right to designate their version with the trademark?

The day may come when those who determine the official versions of large open source projects like Linux will control one of the most valuable pieces of intellectual property in the world - its trademark. Is this the next intellectual property battle in the open source world? Many people are poised to fight a patent fight - but is anyone prepared for the havoc that a trademark fight could cause?

It's a distressing possibility. So distressing, that it makes me think perhaps there are no trademarks in programmer heaven. If there are, I suppose, the question is which one: cross, star, many-armed god? I think, with all due respect, these are all too valuable, too controversial, and too weighed down with historical baggage. I would bet on the only free one: the penguin.

The author's professional bio can be viewed here.

More Stories By Heather Meeker

Heather Meeker is a shareholder at the Silicon Valley office of Greenberg Traurig, LLP, an international law firm well known for its intellectual property practice. She specializes in drafting and negotiating intellectual property transactions for software and other technology clients, with an emphasis on open source software. She is co-chair of the ABA committee to open source. Heather was a programmer/analyst before becoming an attorney.

Comments (6) View Comments

Share your thoughts on this story.

Add your comment
You must be signed in to add a comment. Sign-in | Register

In accordance with our Comment Policy, we encourage comments that are on topic, relevant and to-the-point. We will remove comments that include profanity, personal attacks, racial slurs, threats of violence, or other inappropriate material that violates our Terms and Conditions, and will block users who make repeated violations. We ask all readers to expect diversity of opinion and to treat one another with dignity and respect.


Most Recent Comments
Aldo Castaneda 11/17/04 07:50:11 PM EST

Ms. Meeker,

I appreciate your response to my comment.

I'm actually working on the "you need a lawyer to do it" part as I'm in my second year of law school.

As to brand "dilution." In your opinion does that concept apply equally to brands whose value arguably derives from trusted functionality and/or reliability (the code in this case) as it does to commercial consumer brands such as say Coke whose value dervies from consumer associations to more abstract lifestyle values which given their more subjective qualities are perhaps substantially more prone to dilution?

One more question if you'll indulge me (That makes two questions I suppose)?

Do you think the nexus of Open Source/Trademark/Financing is fertile ground for a law school thesis? If so is there a particular topic that you view as particularly timely?

Thank you.

Thank you.

-Aldo Castaneda

Heather Meeker 11/17/04 06:30:49 PM EST

Mr. Castaneda, thanks for your comment. It seems to me that the open source community has been, in general, quite tolerant of the development of brand value on open source projects. Most people who view open source as a viable business model would stress that branding is very important, and the way to develop a valuable business is by developing a valuable brand. If you are one of a "loosely assembled team of developers" working on an open source project, and you hope to create commercial value in the project, it's very worthwhile to put some time into mapping out a branding strategy -- whatever it may be. Licensing trademarks for profit is tricky, though. (It is one of those "don't do this at home" things -- you need lawyer help to do it.) You can leverage a brand, but only so much -- before it becomes diluted and loses its value.

I hope that helps, and thanks for reading the article.

Aldo Castaneda 11/17/04 12:42:59 PM EST

So given your conclusion with regard to the importance of trademark rights as to Open Source projects - Do you think that the early co-development of code along with trademarks is the key to unlocking the distributed economic potential in open source development?

In other words, can a loosely assembled team of developers open code gain financial leverage by selling rights to trademark usage and at the same time let the code be "free"?

Is trademark the goose that laid the Open Source Golden egg?

Seems it would not be too hard, assuming the release of an official version of code to figure out share ownership as a function of code developed. So that when trademark rights are licensed financial returns (this could be from speculative financing as well) could be distributed accordingly.

Is this already being done? Assuming this might work are problems around defining "share ownership" as a function of code contributed too subjective? Is valuation of the trademarket too nebulous? Would the "community" be adverse to this notion, as it is a for profit concept, albeit one that does't impede the end-user access to functionality?

Thank you 11/13/04 04:24:51 AM EST

Nice article. Hopefully the Groklaw community will enjoy this one too. Thank you Heaather!

Good Job! 11/13/04 04:16:09 AM EST

Great article to wake up to on a Saturday morning, thanks!

Good Job! 11/13/04 04:15:35 AM EST

Great article to wake up to on a Saturday morning, thanks!

@MicroservicesExpo Stories
The nature of test environments is inherently temporary—you set up an environment, run through an automated test suite, and then tear down the environment. If you can reduce the cycle time for this process down to hours or minutes, then you may be able to cut your test environment budgets considerably. The impact of cloud adoption on test environments is a valuable advancement in both cost savings and agility. The on-demand model takes advantage of public cloud APIs requiring only payment for t...
"Codigm is based on the cloud and we are here to explore marketing opportunities in America. Our mission is to make an ecosystem of the SW environment that anyone can understand, learn, teach, and develop the SW on the cloud," explained Sung Tae Ryu, CEO of Codigm, in this SYS-CON.tv interview at 21st Cloud Expo, held Oct 31 – Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA.
High-velocity engineering teams are applying not only continuous delivery processes, but also lessons in experimentation from established leaders like Amazon, Netflix, and Facebook. These companies have made experimentation a foundation for their release processes, allowing them to try out major feature releases and redesigns within smaller groups before making them broadly available. In his session at 21st Cloud Expo, Brian Lucas, Senior Staff Engineer at Optimizely, discussed how by using ne...
Many enterprise and government IT organizations are realizing the benefits of cloud computing by extending IT delivery and management processes across private and public cloud services. But they are often challenged with balancing the need for centralized cloud governance without stifling user-driven innovation. This strategy requires an approach that fundamentally reshapes how IT is delivered today, shifting the focus from infrastructure to services aggregation, and mixing and matching the bes...
"CA has been doing a lot of things in the area of DevOps. Now we have a complete set of tool sets in order to enable customers to go all the way from planning to development to testing down to release into the operations," explained Aruna Ravichandran, Vice President of Global Marketing and Strategy at CA Technologies, in this SYS-CON.tv interview at DevOps Summit at 21st Cloud Expo, held Oct 31 – Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA.
While we understand Agile as a means to accelerate innovation, manage uncertainty and cope with ambiguity, many are inclined to think that it conflicts with the objectives of traditional engineering projects, such as building a highway, skyscraper or power plant. These are plan-driven and predictive projects that seek to avoid any uncertainty. This type of thinking, however, is short-sighted. Agile approaches are valuable in controlling uncertainty because they constrain the complexity that ste...
Cavirin Systems has just announced C2, a SaaS offering designed to bring continuous security assessment and remediation to hybrid environments, containers, and data centers. Cavirin C2 is deployed within Amazon Web Services (AWS) and features a flexible licensing model for easy scalability and clear pay-as-you-go pricing. Although native to AWS, it also supports assessment and remediation of virtual or container instances within Microsoft Azure, Google Cloud Platform (GCP), or on-premise. By dr...
"This all sounds great. But it's just not realistic." This is what a group of five senior IT executives told me during a workshop I held not long ago. We were working through an exercise on the organizational characteristics necessary to successfully execute a digital transformation, and the group was doing their ‘readout.' The executives loved everything we discussed and agreed that if such an environment existed, it would make transformation much easier. They just didn't believe it was reali...
It’s “time to move on from DevOps and continuous delivery.” This was the provocative title of a recent article in ZDNet, in which Kelsey Hightower, staff developer advocate at Google Cloud Platform, suggested that “software shops should have put these concepts into action years ago.” Reading articles like this or listening to talks at most DevOps conferences might make you think that we’re entering a post-DevOps world. But vast numbers of organizations still struggle to start and drive transfo...
Agile has finally jumped the technology shark, expanding outside the software world. Enterprises are now increasingly adopting Agile practices across their organizations in order to successfully navigate the disruptive waters that threaten to drown them. In our quest for establishing change as a core competency in our organizations, this business-centric notion of Agile is an essential component of Agile Digital Transformation. In the years since the publication of the Agile Manifesto, the conn...
"We're developing a software that is based on the cloud environment and we are providing those services to corporations and the general public," explained Seungmin Kim, CEO/CTO of SM Systems Inc., in this SYS-CON.tv interview at 21st Cloud Expo, held Oct 31 – Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA.
The cloud revolution in enterprises has very clearly crossed the phase of proof-of-concepts into a truly mainstream adoption. One of most popular enterprise-wide initiatives currently going on are “cloud migration” programs of some kind or another. Finding business value for these programs is not hard to fathom – they include hyperelasticity in infrastructure consumption, subscription based models, and agility derived from rapid speed of deployment of applications. These factors will continue to...
While some developers care passionately about how data centers and clouds are architected, for most, it is only the end result that matters. To the majority of companies, technology exists to solve a business problem, and only delivers value when it is solving that problem. 2017 brings the mainstream adoption of containers for production workloads. In his session at 21st Cloud Expo, Ben McCormack, VP of Operations at Evernote, discussed how data centers of the future will be managed, how the p...
Let's do a visualization exercise. Imagine it's December 31, 2018, and you're ringing in the New Year with your friends and family. You think back on everything that you accomplished in the last year: your company's revenue is through the roof thanks to the success of your product, and you were promoted to Lead Developer. 2019 is poised to be an even bigger year for your company because you have the tools and insight to scale as quickly as demand requires. You're a happy human, and it's not just...
Enterprises are adopting Kubernetes to accelerate the development and the delivery of cloud-native applications. However, sharing a Kubernetes cluster between members of the same team can be challenging. And, sharing clusters across multiple teams is even harder. Kubernetes offers several constructs to help implement segmentation and isolation. However, these primitives can be complex to understand and apply. As a result, it’s becoming common for enterprises to end up with several clusters. Thi...
DevOps teams have more on their plate than ever. As infrastructure needs grow, so does the time required to ensure that everything's running smoothly. This makes automation crucial - especially in the server and network monitoring world. Server monitoring tools can save teams time by automating server management and providing real-time performance updates. As budgets reset for the New Year, there is no better time to implement a new server monitoring tool (or re-evaluate your current solution)....
We just came off of a review of a product that handles both containers and virtual machines in the same interface. Under the covers, implementation of containers defaults to LXC, though recently Docker support was added. When reading online, or searching for information, increasingly we see “Container Management” products listed as competitors to Docker, when in reality things like Rocket, LXC/LXD, and Virtualization are Dockers competitors. After doing some looking around, we have decided tha...
"Opsani helps the enterprise adopt containers, help them move their infrastructure into this modern world of DevOps, accelerate the delivery of new features into production, and really get them going on the container path," explained Ross Schibler, CEO of Opsani, and Peter Nickolov, CTO of Opsani, in this SYS-CON.tv interview at DevOps Summit at 21st Cloud Expo, held Oct 31 – Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA.
The benefits of automation are well documented; it increases productivity, cuts cost and minimizes errors. It eliminates repetitive manual tasks, freeing us up to be more innovative. By that logic, surely, we should automate everything possible, right? So, is attempting to automate everything a sensible - even feasible - goal? In a word: no. Consider this your short guide as to what to automate and what not to automate.
identify the sources of event storms and performance anomalies will require automated, real-time root-cause analysis. I think Enterprise Management Associates said it well: “The data and metrics collected at instrumentation points across the application ecosystem are essential to performance monitoring and root cause analysis. However, analytics capable of transforming data and metrics into an application-focused report or dashboards are what separates actual application monitoring from relat...