Clearly you are young, inexperienced in the ways things fail, and lack experience. You - and everybody else on this forum - really should read comp.risks e.g. via the archive at http://catless.ncl.ac.uk/Risks/ It is a low volume very high quality group, and I recommend using the RSS feeds.
Engineers, as opposed to technicians, have to be concerned with theoretical and practical failure modes. Indeed, large part of engineering is not about how things work (the easy bit); it is about how things fail and how to avoid the failures.
Yes, maybe some of us are inexperienced ... so what? Get over it!
For me this is fine - I would consider myself as an "advanced hobbyist" nothing less, nothing more.
But in the current framing, open hardware is just fake. When no way of dealing with the regulations pragmatically can be found, it is nothing more than marketing BS for big companies. An open community can ONLY work if everybody has the right to modify and share a good and is at the same time the only person responsible himself for the goods he is using from the community.
NOBODY with a sane mind would invest his spare time into designing/improving something if he has to take unmanageable legal risks in doing so. This would be an investment without any expected returns but high risks involved.
But as long as open hardware is just treated just as open documentation about hardware, it seems fine (CERN-OHL
http://www.ohwr.org/attachments/2388/cern_ohl_v_1_2.txt):
5. Warranty and liability
5.1 DISCLAIMER – The Documentation and any modified Documentation are
provided "as is" and any express or implied warranties, including, but
not limited to, implied warranties of merchantability, of satisfactory
quality, non-infringement of third party rights, and fitness for a
particular purpose or use are disclaimed in respect of the
Documentation, the modified Documentation or any Product.
The TARP-license is even more explicit on that (
https://www.tapr.org/TAPR_Open_Hardware_License_v1.0.txt):
7.1 THE DOCUMENTATION IS PROVIDED ON AN"AS-IS" BASIS WITHOUT
WARRANTY OF ANY KIND, TO THE EXTENT PERMITTED BY APPLICABLE LAW. ALL
WARRANTIES, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO ANY
WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, AND
TITLE, ARE HEREBY EXPRESSLY DISCLAIMED.
7.2 IN NO EVENT UNLESS REQUIRED BY APPLICABLE LAW WILL ANY LICENSOR
BE LIABLE TO YOU OR ANY THIRD PARTY FOR ANY DIRECT, INDIRECT,
INCIDENTAL, CONSEQUENTIAL, PUNITIVE, OR EXEMPLARY DAMAGES ARISING OUT OF
THE USE OF, OR INABILITY TO USE, THE DOCUMENTATION OR PRODUCTS,
INCLUDING BUT NOT LIMITED TO CLAIMS OF INTELLECTUAL PROPERTY
INFRINGEMENT OR LOSS OF DATA, EVEN IF THAT PARTY HAS BEEN ADVISED OF THE
POSSIBILITY OF SUCH DAMAGES.
But now compare this to OSS licenses such as the GPL (
https://www.gnu.org/licenses/gpl.txt). You'll see it is pretty much the same, But remember the BIG DIFFERENCE there is that the software IS THE PRODUCT and not some meta-information.
15. Disclaimer of Warranty.
THERE IS NO WARRANTY FOR THE PROGRAM, TO THE EXTENT PERMITTED BY
APPLICABLE LAW. EXCEPT WHEN OTHERWISE STATED IN WRITING THE COPYRIGHT
HOLDERS AND/OR OTHER PARTIES PROVIDE THE PROGRAM "AS IS" WITHOUT WARRANTY
OF ANY KIND, EITHER EXPRESSED OR IMPLIED, INCLUDING, BUT NOT LIMITED TO,
THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
PURPOSE. THE ENTIRE RISK AS TO THE QUALITY AND PERFORMANCE OF THE PROGRAM
IS WITH YOU. SHOULD THE PROGRAM PROVE DEFECTIVE, YOU ASSUME THE COST OF
ALL NECESSARY SERVICING, REPAIR OR CORRECTION.
You see, the members of the OSS community are pretty much protected in terms of being held responsible for mistakes. And they share products...
For Hardware this will simply not work. When somebody want's to transform a design into real physical hardware, all regulatory hell breaks loose. And it doesn't matter if you sell it, give it away for free, sell it as a finished product or just as a kit ... It has to comply to the regulations (and needs to be safe)! The risks involved are not transferable to the user.
So the question still persists: How do we deal with security in open hardware projects in a way that participative community development is still possible without violating the regulations?
Home
Help
Search
Login
Register
