Linux Containers Authors: Yeshim Deniz, Liz McMillan, Zakia Bouachraoui, Elizabeth White, Pat Romanski

Related Topics: Linux Containers

Linux Containers: Article

Dual-Licensing Open Source Business Models

Mixing proprietary terms with the GPL

To Open Source or not to Open Source - that is the question. Or is it? Open Source has matured into a robust development model, and many businesses that shied away from it are reconsidering it. The good news these days is that Open Source is no longer an all-or-nothing choice.

What Is a Dual-Licensing Model?

A dual-licensing model is a business model in which a company that markets a commercial software product gives its licensees the choice of two licensing models: Open Source and closed source (or "proprietary"). In this business model, a customer can choose to license the software under the terms of an Open Source license such as the GNU General Public License (GPL). Open Source licenses let licensees sublicense the product's source code to multiple levels of sub-licensees, but require re-licensing in source code format, usually on identical terms. Alternatively, the customer can choose a closed source or proprietary license with more conventional licensing terms that limit his ability to re-license the product, or restrict him to object code sublicenses only.

The theory is that the dual-licensing model helps both the free software community and the commercial software licensee. The open availability of source code lets the software be improved by those who have the right to change it under an Open Source license. The proceeds from commercial licensing help fund additional development, and help establish the product as a commercial standard.

Who's Doing It?

Several companies have broken ground by launching dual-licensing models.

The best known is mySQL AB, which produces an Open Source database. mySQL has two license options: a commercial license and a modified GPL license, which allows the licensee to distribute mySQL code under GPL side-by-side with other FLOSS licenses.

Commercial licensees get a commercially supported product with a level of assurance from mySQL that doesn't require that their mySQL-based software be Open Sourced. mySQL can offer a commercial license because it owns the mySQL code. The commercial license sells for several hundred dollars per server. The two licensing models cover identical products.

TrollTech AS uses a dual-licensing model with its QT product, a C++ application development framework. It charges a per-developer price for its commercial license. The two licensing models cover identical code bases. The free licensing model is available under the GPL (or the QPL, a free software license that's not that widely used).

Active Endpoints, Inc. uses a different strategy, having launched a separate Open Source product that complements its core product. Its ActiveBPEL engine is a runtime environment for executing processes based on the BPEL4WS 1.1 specification. It is the core of Active Endpoints' ActiveWebflow family. Active Endpoints licenses the Active BPEL Engine under the GPL, and its suite of products on commercial licensing terms.

Mandrakesoft distributes a popular Linux distribution. It, too, has multiple license options, but its commercial product is different from its free software. Mandrake's Web site says that "The difference is not the license of our products, but the licenses of third-party software contained in the commercial distributions. Download edition Mandrakesoft products only include components licensed under a Free Software/Open Source License. Commercial products may also include software add-ons that are covered by a proprietary license that often prevents free copying and redistribution of the product."

SleepyCat Software distributes Berkeley DB, a data storage and retrieval development package, under multiple licenses. Its Open Source option requires any redistribution to include source code. It also offers commercial licenses: "If you do not want to release the source code for your application, you may purchase a license from Sleepycat Software," it says.

Many Open Source projects offer licenses under multiple Open Source options - such as the Mozilla Foundation, which gives its licensees the choice of Mozilla, GPL, or LGPL.

IP and Licensing Concerns

Lurking in all of this are some profound legal issues:
  • Ur-Licensing: The decision "to Open Source or not to Open Source" is only possible for the original author of software code - the "Ur-licensor." This is because, once software is licensed under a "viral" or free software license, it must forever be licensed under those terms. No licensee can change this. The necessity of being the original author is borne out by the dual-licensing businesses described above. All that offer commercial licenses are the authors of their code - but for Mandrakesoft the exception proves the rule. Its commercial licensing option is dictated by third-party licensing terms.
  • Contributions: The premise of dual licensing is that the community can contribute to the product's code base to build better code. So, assuming a company has the right - by virtue of having written its code - to give its licensees a choice of Open Source or commercial terms, it must decide how to manage contributions from the Open Source community. There are two ways to go about it: by requiring contributors to assign all rights to their contributions to the company, or to require the contributors to grant a license to the company that's broad enough to allow redistribution on both commercial and non-commercial terms. Either approach can meet with significant resistance from the contributor community, so public relations - and a good licensing FAQ - are key.
  • Trademarks: Any company launching any business initiative needs to consider branding. Open Source businesses are no different, but the trademark policies covering Open Source products can be trickier than for proprietary software. The problem, in a nutshell, is that trademark law and Open Source are fundamental opposites. Trademarks are only as valuable as their owners make them by controlling the quality and source of the products that bear them. Losing control means losing rights through a process known as dilution or blurring. But Open Source is all about lack of control. A company can decide to grant the right to modify its software to all and sundry. But it must decide how far to let those modifications stray from the official release before the product's branding has to be changed. Different Open Source companies and projects approach this issue differently. Some allow limited use of the mark associated with the product; some allow none. A savvy dual-licensing model requires serious thought about trademark policy, as well as active policing of the policy to avoid compromising of a company's trademark rights.
  • Patents: Finally, any company that offers Open Source licensing terms for code it has written must consider the effect on its patent portfolio. Releasing code under Open Source licenses can give licensees an implied license to a patent that covers the code - though the scope of that license will be unclear. Some of the more "corporate" Open Source licenses include express patent grants, and this helps clarify the scope of the patent licenses that are included. But any commercial enterprise that releases Open Source code must make this decision with its eyes open after formulating a general patent strategy.

Corporate Concerns

Companies pursuing a dual-licensing strategy should consider the lesson - learned too dear and too late by many start-ups - that distinct businesses are better separated into different operating entities. While many in the business community are embracing Open Source as a development method or a business model, some still consider it a substantial negative. A start-up may find that a potential acquirer or investor dislikes the idea of buying or investing in Open Source assets, or, at least, doesn't value those assets seriously. If your acquirer tells you that it loves your product, but doesn't want to be involved in Open Source, you may need to segregate the Open Source business prior to sale. Doing this on the eve of an acquisition can be difficult, as any CEO who's gone through a spin-off can tell you. The longer a business operates, the harder it is to segregate its multiple business lines. Assets like copyrights, trade secrets, trademark rights, and goodwill can be difficult to un-mingle. The solution may be to create dual corporations to handle your dual-licensing model.

Creating dual corporations also helps compartmentalize liability, so your for-profit business won't be responsible for losses or liabilities that the Open Source project may incur. But to preserve this advantage, you'll need to follow corporate formalities like directors' meetings and corporate minutes, or the "corporate veil" that limits liability can fail.

If you decide to use a dual-corporate structure with your dual-licensing model, you might also consider designating one of them as a not-for-profit entity. Many Open Source projects operate through public benefit corporations (classified under 501(c)(3) of the Internal Revenue Code). However, before doing this, you should consult a tax attorney or an advisor who's experienced in this area to establish this status and help set your expectations. Keep in mind that not-for-profit entities are obliged to operate for the benefit of the public at large, not to remove liabilities and costs from your for-profit balance sheet. Transfer payments between for-profit and not-for-profit entities can land you in tax trouble, and compromise your not-for-profit status. This status has other more important uses - getting donations and grants, and garnering goodwill with the community. It also lets you invite participation by board members who prefer not to sit on boards of private for-profit corporations.

Does It Work?

In a sense, the business theory behind dual licensing is nothing new. Software companies have historically offered "lite" versions of their products as teasers, shareware, or free evaluation copies. Familiar examples are the video game Doom (which was licensed for free in a version that contained only a few levels, whereas the full game contained many others), and the Netscape browser (which was licensed for free to users of the client portion, whereas the server portion was licensed to businesses on commercial terms). Hardware companies have traditionally included software - even software source code - free with their products to leverage hardware sales. This is sometimes called "widget frosting." For instance, a company that sells computer hardware may Open Source its drivers or interface tools, which are not normally sold separately to the customer. And of course IBM is a major proponent of Linux, which drives sales of its hardware, software, and consulting services.

So, there's no reason for dual licensing not to work as a business model. It's too early to tell, but the dual-licensing model seems to be serving the companies doing it - not only for financial success but to engender community support as well. Dual-licensing models are accepted by most members of the Open Source community, and increasingly by investors concerned with the bottom line.

More Stories By Heather Meeker

Heather Meeker is a shareholder at the Silicon Valley office of Greenberg Traurig, LLP, an international law firm well known for its intellectual property practice. She specializes in drafting and negotiating intellectual property transactions for software and other technology clients, with an emphasis on open source software. She is co-chair of the ABA committee to open source. Heather was a programmer/analyst before becoming an attorney.

Comments (2)

Share your thoughts on this story.

Add your comment
You must be signed in to add a comment. Sign-in | Register

In accordance with our Comment Policy, we encourage comments that are on topic, relevant and to-the-point. We will remove comments that include profanity, personal attacks, racial slurs, threats of violence, or other inappropriate material that violates our Terms and Conditions, and will block users who make repeated violations. We ask all readers to expect diversity of opinion and to treat one another with dignity and respect.

IoT & Smart Cities Stories
Dion Hinchcliffe is an internationally recognized digital expert, bestselling book author, frequent keynote speaker, analyst, futurist, and transformation expert based in Washington, DC. He is currently Chief Strategy Officer at the industry-leading digital strategy and online community solutions firm, 7Summits.
Digital Transformation is much more than a buzzword. The radical shift to digital mechanisms for almost every process is evident across all industries and verticals. This is often especially true in financial services, where the legacy environment is many times unable to keep up with the rapidly shifting demands of the consumer. The constant pressure to provide complete, omnichannel delivery of customer-facing solutions to meet both regulatory and customer demands is putting enormous pressure on...
IoT is rapidly becoming mainstream as more and more investments are made into the platforms and technology. As this movement continues to expand and gain momentum it creates a massive wall of noise that can be difficult to sift through. Unfortunately, this inevitably makes IoT less approachable for people to get started with and can hamper efforts to integrate this key technology into your own portfolio. There are so many connected products already in place today with many hundreds more on the h...
The standardization of container runtimes and images has sparked the creation of an almost overwhelming number of new open source projects that build on and otherwise work with these specifications. Of course, there's Kubernetes, which orchestrates and manages collections of containers. It was one of the first and best-known examples of projects that make containers truly useful for production use. However, more recently, the container ecosystem has truly exploded. A service mesh like Istio addr...
Digital Transformation: Preparing Cloud & IoT Security for the Age of Artificial Intelligence. As automation and artificial intelligence (AI) power solution development and delivery, many businesses need to build backend cloud capabilities. Well-poised organizations, marketing smart devices with AI and BlockChain capabilities prepare to refine compliance and regulatory capabilities in 2018. Volumes of health, financial, technical and privacy data, along with tightening compliance requirements by...
Charles Araujo is an industry analyst, internationally recognized authority on the Digital Enterprise and author of The Quantum Age of IT: Why Everything You Know About IT is About to Change. As Principal Analyst with Intellyx, he writes, speaks and advises organizations on how to navigate through this time of disruption. He is also the founder of The Institute for Digital Transformation and a sought after keynote speaker. He has been a regular contributor to both InformationWeek and CIO Insight...
Andrew Keys is Co-Founder of ConsenSys Enterprise. He comes to ConsenSys Enterprise with capital markets, technology and entrepreneurial experience. Previously, he worked for UBS investment bank in equities analysis. Later, he was responsible for the creation and distribution of life settlement products to hedge funds and investment banks. After, he co-founded a revenue cycle management company where he learned about Bitcoin and eventually Ethereal. Andrew's role at ConsenSys Enterprise is a mul...
To Really Work for Enterprises, MultiCloud Adoption Requires Far Better and Inclusive Cloud Monitoring and Cost Management … But How? Overwhelmingly, even as enterprises have adopted cloud computing and are expanding to multi-cloud computing, IT leaders remain concerned about how to monitor, manage and control costs across hybrid and multi-cloud deployments. It’s clear that traditional IT monitoring and management approaches, designed after all for on-premises data centers, are falling short in ...
In his general session at 19th Cloud Expo, Manish Dixit, VP of Product and Engineering at Dice, discussed how Dice leverages data insights and tools to help both tech professionals and recruiters better understand how skills relate to each other and which skills are in high demand using interactive visualizations and salary indicator tools to maximize earning potential. Manish Dixit is VP of Product and Engineering at Dice. As the leader of the Product, Engineering and Data Sciences team at D...
Dynatrace is an application performance management software company with products for the information technology departments and digital business owners of medium and large businesses. Building the Future of Monitoring with Artificial Intelligence. Today we can collect lots and lots of performance data. We build beautiful dashboards and even have fancy query languages to access and transform the data. Still performance data is a secret language only a couple of people understand. The more busine...