Home » Topics » Cybersecurity » “Software licence mismanagement is a crime.”

“Software licence mismanagement is a crime.”

Avatar photoby Ben Rossi

Action…

The Business Software Alliance (BSA) released its annual report on software piracy in May 2005. The study, conducted by analysts IDC, claimed that 27% of business software in the UK is pirated. While this is a small reduction on the previous year's figure of 29%, the actual cost to publishers rose to over £1 billion as the size of the industry increased.

In light of the numbers, the BSA, a non-profit organis-ation that represents major software and hardware companies such as Microsoft, IBM, Cisco and Symantec, along with the Federation Against Software Theft (FAST), is lobbying the UK government to stiffen penalties for intellectual property crime. But they are equally prepared to take matters into their own hands and bring civil prosecutions against companies who they can prove are using unlicensed software.

Their evidence comes largely from whistleblowers – disgruntled employees and morally principled members of IT departments. The BSA offers informants up to £20,000, although the highest yet paid out is £6,000.

It then presents their case to the offending companies, who must prove their compliance or face being dragged through the courts. Most settle before it gets that far, often paying the full licence price rather than the discounted rates most companies can secure. Over the last five years the BSA has received over £1.8 million from British companies settling out of court for illegal software use, which pays for enforcement.

"Many businesses fall foul of copyright law not because they are intentionally trying to defraud but because of their processes," says the BSA's Mike Newton. It offers audits and free downloadable asset management tools to help educate companies, but Newton says not paying for licences through ignorance or poor IT management is no less of a crime than buying pirated software.

Some users have questioned the BSA's methods. Nobody wants to use illegal software, but the BSA is accused of approaching companies too aggressively, with a ‘guilty until proven innocent' approach. They also say that asset management tools cannot give the sort of control the BSA demands.

   
 

Reaction…

David Roberts, chairman of blue-chip user group the Corporate IT Forum (TIF), says the BSA should be more sympathetic to large corporations.

"What makes us extremely angry is the assumption that everybody is guilty. [The claims] are bully boy tactics by any other name. Eliminating piracy in my view is about preventing illegal copies en masse and reselling. It is not about making organisations question their licensing management. TIF members all have high awareness of the need to properly audit and manage licences [but] if they have 50,000 employees in several countries, gathering the information to be able to say that is an enormous challenge."

Ray Titcombe, chairman of the Strategic Supplier Relationship Group, says the BSA needs to build trust by helping customers as well as vendors.

"How can asset management tools possibly cope with the huge variation in licences' terms of usage? Wouldn't it be nice if there were only two or three models of software licensing? FAST, the BSA and software vendors need to respect that if piracy is happening, it's probably not intentional. In many areas companies will be oversubscribed, which is as easy to do as forgetting a licence. This is where FAST and the BSA – and the Strategic Supplier Relationship Group – could add extra value, so they are not seen only as police."

 

 
   

Avatar photo

Ben Rossi

Ben was Vitesse Media's editorial director, leading content creation and editorial strategy across all Vitesse products, including its market-leading B2B and consumer magazines, websites, research and...

Related Topics

Related Stories

Cybersecurity

Fully Homomorphic Encryption (FHE) with silicon photonics – the future of secure computing

Nick New, CEO and founder of Optalysys, walks us through the opportunities and challenges in implementing Fully Homomorphic Encryption (FHE)

Cybersecurity

DFIR and its role in modern cybersecurity 

Here is why digital forensics and incident response (DFIR) is a crucial part of today's cybersecurity ecosystem

Cybersecurity

Will more AI mean more cyberattacks?

An increased use of AI within organisations could spell a rise in cyberattacks, explains Nick Martindale. Here's what you can do

Cybersecurity

Is RaaS becoming commoditised?

Ransomware as a Software (RaaS) lowers the barriers to entry for attackers and has increased competition between criminal groups