Welcome!

Linux Containers Authors: Yeshim Deniz, Liz McMillan, Zakia Bouachraoui, Elizabeth White, Pat Romanski

Related Topics: Linux Containers, Java IoT

Linux Containers: Article

i-Technology Viewpoint: Mark My Words - Trademarks and Open Source

i-Technology Viewpoint: Mark My Words - Trademarks and Open Source

In programmer heaven, all software is open source software. Solving problems is as easy as downloading the code you need - none of which comes with any nasty copyright baggage - and the only part you need to write for yourself is the coolest, most interesting algorithm, which compiles, runs, and works on the first try. Naturally, there aren't software patents in heaven, either: I don't think there are any patent examiners who could get through the pearly gates, do you?

When you get there though, I would think twice about using that little red hat logo.

Programmers, now politicized by the free software movement, spend a lot of time arguing about copyrights and patents - whether they're morally right or wrong and how widely they should be enforced. But they don't think much about trademarks. Trademarks, in a way, are the most bulletproof form of intellectual property: more effective than copyright, cheaper to enforce than patents.

What's in a Trademark?

Trademarks are really all about consumer protection. This is why trademark laws are so strong and the penalties for violating them can be so high. When you infringe a trademark, you're not just hurting the owner of the trademark, you're hurting all consumers, everywhere. There are two basic kinds of trademark infringement: passing off and reverse passing off. If you write your own operating system from scratch and call it Red Hat Linux, don't answer the doorbell. That's called "passing off" your goods as those of another - in this case a company with a valuable trademark and a strong reputation, whose lawyers will be paying you a visit.

If you take Red Hat Linux and repackage it unadulterated as God Bless You-nix, that's reverse passing off, or claiming another's product as your own. In each case, consumers are being fooled as to the source of what they are buying.

Trademarks in the Open Source World

All of this works pretty much as expected in a commercial setting. However, when it's combined with an open source software model, things get a bit, well, interesting. For instance, by definition, any open source software project lets you modify and distribute its software royalty-free. But most open source projects will be more conservative about letting you use their trademarks. Take a look at the policies for the use of the red hat, the GNOME footprint, the Debian swirl, or the Mozilla red lizard (www.redhat.com/about/trademark_guidelines.html, http://mail.gnome.org/archives/foundation-list/ 2003-November/msg00098.html, www.debian.org/logos/, and www.mozilla.org/foundation/licensing.html, respectively). All of them impose some kind of criteria for products bearing the mark. These criteria range from quality, to interoperability, to the amount of open source code the product contains.

The most popular logo in the open source world, of course, is the penguin named "Tux." This trademark has not been managed with systematic trademark use policies. Consequently, the reputation and trademark strength associated with the mark are weak. The use of the penguin has provided fodder for plenty of amusement (see the discussion of the meaning and history of Tux on http://en.wikipedia.org/wiki/Tux), but it is not consistently applied. The most common representation is the bowling-pin shaped tuxedo-marked cartoon bird designed by Larry Ewing, but even the average computer programmer, much more so than the average consumer, would be hard pressed to tell you exactly what product it represents. The only conditions for use of this logo are acknowledgment of the author of the logo - no conditions regarding the product on which it is placed. This type of condition is associated more with copyright than trademark.

There is, of course, a copyright in the appearance of any logo. But a logo that represents neither a source for products nor a level of quality for products is, in the end, not really a trademark. Tux is usually described by the software community as a mascot rather than a trademark, and that's probably closer to the truth.

"Linux," on the other hand, is a trademark registered by Linus Torvalds. The use of the Linux mark is policed by the Linux Mark Institute, www.linuxmark.org. The institute was created after a dispute over ownership of the trademark arose. This dispute arose because the mark was not being policed and was not registered - a state of affairs that allowed others to claim rights in it. Linux has been used more consistently than the Tux logo. However, some would argue that it's generic.

Confusion over what constitutes a "Linux" product is evidenced by the ubiquitous reexplanation of the difference between Linux and GNU/Linux.GNU describes a set of tools promulgated by the GNU Project. These tools are usually part of a product distribution that contains the Linux kernel. See Wikipedia's definition of "Linux": "Strictly, the name Linux refers only to the Linux kernel, but it is commonly used to describe entire Unix-like operating systems (also known as GNU/Linux) that are based on the Linux kernel and libraries and tools from the GNU project" (http://en.wikipedia.org/wiki/Linux).

We see that the open source business community handles the issue of passing off much as any other industry. They do the same for reverse passing off. Even the most noncommittal of open source agreements, the BSD license, contains an express statement limiting your right to use trademarks. For instance, the form of BSD license available on the Open Source Initiative Web site says: "Neither the name of the <ORGANIZATION> nor the names of its contributors may be used to endorse or promote products derived from this software without specific prior written permission." In other words, no trademark license. This might lead you to think that any organization granting such a license is not worrying about reverse passing off. Remember, though, that even the BSD license requires you to display appropriate copyright notices, and earlier versions contained the "advertising requirement" that became so unpopular and disused in the open source community.

There is a good reason for the similarities between trademarks in the open source world and in the rest of the business world. It's not because open source projects are trying to give with one hand and take away with the other. Trademark law is different from copyright or patent law. It is, loosely put, a "use it or lose it" regime. To be more accurate, it's a "use it correctly, or lose it" regime. This rule, in legalese, is called dilution or blurring. If you own a trademark, and you let others use it on their products without supervision, you will eventually lose your rights in it. The legal way of putting this is that a trademark owner must exercise quality control, or his trademark rights may be diluted to the point that his trademark rights are no longer enforceable. The hobby horse example here is "aspirin," once a trademark, now a generic designation with no trademark value.

While an open source license may give you complete freedom to modify and distribute code, it can never give you freedom to distribute modified code under the licensor's trademark, or the rights in the trademark will eventually evaporate - an event that will benefit no one. Remember that this is all about consumer protection. If consumers trusted Red Hat to distribute a robust, reliable product, and Red Hat let everyone use its name, consumers would no longer know if they could trust a product called "Red Hat." That's dilution in a nutshell.

When the Sky Fell

I know what you're thinking: I worry too much. If you think open source and trademarks can't collide, think again. Once upon a time, AT&T licensed Unix to lots of universities in source code form, and those universities openly shared improvements and adaptations of the code. Translation: Unix was very much like an open source product, though that phrase would not be coined for another 20 years. One of the recipients of Unix was the University of California at Berkeley, which modified Unix extensively, most notably developing networking code that made Unix work with TCP/IP-based networking products. Then AT&T stopped licensing the Unix source code, turned Unix into a proprietary product, and began charging high prices for licenses. Berkeley, responding to popular demand, began distributing its own version of Unix, called "Networking Release 1," under the BSD license. (To be precise, the facts were more complicated. Berkeley tried to engineer all of AT&T's copyrightable code out of the product. Whether they succeeded is a moot point, given the disposition of the lawsuit.)

A few versions later, Berkeley Software Design, Incorporated, was formed to distribute a commercially supported version of the Berkeley code. That product, sensibly, was known as BSD Unix. AT&T released its own, closed-source, version of Unix, System V. But BSDI was selling its open source product for 90% less. So AT&T sued BSDI, making both copyright and trademark claims. The court found that AT&T had lost its copyright interest in the Unix code used by Berkeley. The case was settled. Essentially, BSDI won. But BSDI promptly agreed to stop using the trademark Unix. (Once again, the facts were debated. Whether BSDI actually used the Unix trademark in an infringing way was disputed - and mooted by BSDI's agreement to cease using the mark.)

The moral of the story is that copyrights are fragile. They can be lost and engineered around. (It is not so easy to lose them today. AT&T lost its copyright under the pre-1978 rule, under which publication without copyright notice caused a work to fall into the public domain. This rule has changed; today, a positive statement ceding a work to the public domain is necessary to lose a copyright.) Patents, too, can be engineered around, and half of them are invalidated when their owner tries to enforce them. Patents, and to a lesser degree copyrights, can expire, but trademarks can last forever. Trademarks claims are often so fearsome that a defendant in a trademark infringement suit will give up without a fight. BSDI fought AT&T's copyright claims and won. It gave up the trademark battle with barely a squeak.

The sky fell once. Having to change brands in midstream is the business equivalent of the sky falling. A company's trademark is usually considered its most important and valuable piece of intellectual property. The conventional wisdom is that the single most valuable piece of intellectual property in the world is the trademark Coca-Cola - not the formula for the product, the trademark. Changing a trademark for a successful product can be more expensive and more damaging to the value of a business than reengineering the product. Part of this is a cautionary tale. Never assume that you can use a trademark with impunity, even when you have a license to use the copyrights that form the basis of the trademarked product. The open source projects that control the red hat, the footprint, and the lizard will not let you do that. They can't, because they are the custodians of those marks for the consumer's benefit.

The Next Battleground?

This is more than a cautionary tale; it's a peek into the realities behind how intellectual property works for open source in the business world. Ask anyone how to make money in the open source space and they will tell you roughly the same thing: services, support, and widget frosting. Are those things protected by copyright or patent? Maybe, maybe not. But they are definitely protected by trademark. Companies can, arguably, exercise even more control over their licensees via trademark than they can via copyright. Trademark owners can - and must - supervise all use of their marks. Supervision, however, is anathema to free software, which is premised on the ability to modify software freely, without supervision.

All this would not be so troubling, but the idea of officially sanctioned versions is, in a way, even more important in the open source world than it is elsewhere. In the open source world, reputation is everything.

Skeptics often ask what keeps open source code from forking infinitely. After all, everyone has the right to create his or her own version of open source code. To those familiar with open source, the answer is simple: people trust the official releases of open source code because of the reputation of the gatekeepers of the source tree. Remember, trademark is the same as reputation. Some forking has taken place in the open source world, and trademark battles have not ensued. But what if two factions wanted to release competing versions of Linux - or any other open source project? Which faction would get the right to designate their version with the trademark?

The day may come when those who determine the official versions of large open source projects like Linux will control one of the most valuable pieces of intellectual property in the world - its trademark. Is this the next intellectual property battle in the open source world? Many people are poised to fight a patent fight - but is anyone prepared for the havoc that a trademark fight could cause?

It's a distressing possibility. So distressing, that it makes me think perhaps there are no trademarks in programmer heaven. If there are, I suppose, the question is which one: cross, star, many-armed god? I think, with all due respect, these are all too valuable, too controversial, and too weighed down with historical baggage. I would bet on the only free one: the penguin.

The author's professional bio can be viewed here.

More Stories By Heather Meeker

Heather Meeker is a shareholder at the Silicon Valley office of Greenberg Traurig, LLP, an international law firm well known for its intellectual property practice. She specializes in drafting and negotiating intellectual property transactions for software and other technology clients, with an emphasis on open source software. She is co-chair of the ABA committee to open source. Heather was a programmer/analyst before becoming an attorney.

Comments (6)

Share your thoughts on this story.

Add your comment
You must be signed in to add a comment. Sign-in | Register

In accordance with our Comment Policy, we encourage comments that are on topic, relevant and to-the-point. We will remove comments that include profanity, personal attacks, racial slurs, threats of violence, or other inappropriate material that violates our Terms and Conditions, and will block users who make repeated violations. We ask all readers to expect diversity of opinion and to treat one another with dignity and respect.


IoT & Smart Cities Stories
Dion Hinchcliffe is an internationally recognized digital expert, bestselling book author, frequent keynote speaker, analyst, futurist, and transformation expert based in Washington, DC. He is currently Chief Strategy Officer at the industry-leading digital strategy and online community solutions firm, 7Summits.
Digital Transformation is much more than a buzzword. The radical shift to digital mechanisms for almost every process is evident across all industries and verticals. This is often especially true in financial services, where the legacy environment is many times unable to keep up with the rapidly shifting demands of the consumer. The constant pressure to provide complete, omnichannel delivery of customer-facing solutions to meet both regulatory and customer demands is putting enormous pressure on...
IoT is rapidly becoming mainstream as more and more investments are made into the platforms and technology. As this movement continues to expand and gain momentum it creates a massive wall of noise that can be difficult to sift through. Unfortunately, this inevitably makes IoT less approachable for people to get started with and can hamper efforts to integrate this key technology into your own portfolio. There are so many connected products already in place today with many hundreds more on the h...
The standardization of container runtimes and images has sparked the creation of an almost overwhelming number of new open source projects that build on and otherwise work with these specifications. Of course, there's Kubernetes, which orchestrates and manages collections of containers. It was one of the first and best-known examples of projects that make containers truly useful for production use. However, more recently, the container ecosystem has truly exploded. A service mesh like Istio addr...
Digital Transformation: Preparing Cloud & IoT Security for the Age of Artificial Intelligence. As automation and artificial intelligence (AI) power solution development and delivery, many businesses need to build backend cloud capabilities. Well-poised organizations, marketing smart devices with AI and BlockChain capabilities prepare to refine compliance and regulatory capabilities in 2018. Volumes of health, financial, technical and privacy data, along with tightening compliance requirements by...
Charles Araujo is an industry analyst, internationally recognized authority on the Digital Enterprise and author of The Quantum Age of IT: Why Everything You Know About IT is About to Change. As Principal Analyst with Intellyx, he writes, speaks and advises organizations on how to navigate through this time of disruption. He is also the founder of The Institute for Digital Transformation and a sought after keynote speaker. He has been a regular contributor to both InformationWeek and CIO Insight...
Andrew Keys is Co-Founder of ConsenSys Enterprise. He comes to ConsenSys Enterprise with capital markets, technology and entrepreneurial experience. Previously, he worked for UBS investment bank in equities analysis. Later, he was responsible for the creation and distribution of life settlement products to hedge funds and investment banks. After, he co-founded a revenue cycle management company where he learned about Bitcoin and eventually Ethereal. Andrew's role at ConsenSys Enterprise is a mul...
To Really Work for Enterprises, MultiCloud Adoption Requires Far Better and Inclusive Cloud Monitoring and Cost Management … But How? Overwhelmingly, even as enterprises have adopted cloud computing and are expanding to multi-cloud computing, IT leaders remain concerned about how to monitor, manage and control costs across hybrid and multi-cloud deployments. It’s clear that traditional IT monitoring and management approaches, designed after all for on-premises data centers, are falling short in ...
In his general session at 19th Cloud Expo, Manish Dixit, VP of Product and Engineering at Dice, discussed how Dice leverages data insights and tools to help both tech professionals and recruiters better understand how skills relate to each other and which skills are in high demand using interactive visualizations and salary indicator tools to maximize earning potential. Manish Dixit is VP of Product and Engineering at Dice. As the leader of the Product, Engineering and Data Sciences team at D...
Dynatrace is an application performance management software company with products for the information technology departments and digital business owners of medium and large businesses. Building the Future of Monitoring with Artificial Intelligence. Today we can collect lots and lots of performance data. We build beautiful dashboards and even have fancy query languages to access and transform the data. Still performance data is a secret language only a couple of people understand. The more busine...