The Geopolitics of Code: From Digital Sovereignty to Global Fragmentation
Janson | Day 2 | 14:00 - 14:50 | Speakers: Daniel Izquierdo, Jesus M. Gonzalez-Barahona
Abstract
Open source represents 70% to 90% of modern software codebases and this is today seen as as a crucial global public infrastructure by many players. Given its ubiquity, this is increasingly part of geopolitical discussions and national-security agendas. This presentation will analyze the risks and governance challenges at the intersection of open source and global politics, with a focus on the recent European discourse on digital sovereignty and supply-chain security.
The core dilemma is that open source's power lies in the mutualization of risk (collective maintenance and faster vulnerability detection), but this is being undermined by fragmentation along national and corporate lines. We will explore:
-
The Weaponization of Open Source: How jurisdictional control over key platforms (like GitHub and PyPI, largely hosted by US entities) translates into geopolitical tools (the "Panopticon" and "Chokepoint" effects), as seen in the 2019 GitHub sanctions.
-
Lack of Investment: The crisis of critical components being maintained by small, under-resourced teams, creating an ecosystem that powers the global economy but lacks the resources to secure itself (e.g., the Log4j incident, XZ, and others).
-
The Fragmentation Trend: The response from nations like China, which are building domestic repositories (Gitee, OpenAtom Foundation) as part of a plan for technological self-sufficiency. This fragmentation reduces interoperability and shared visibility. This makes open source more weak and less resilient.
The presentation will conclude by openly discussing a shared call to action for the FOSS community: How can we forge a stronger shared responsibility between developers, policymakers, and industry to mitigate these losses and keep open source secure, interoperable, and globally accessible?.
Attachments
Speakers
Daniel Izquierdo is a researcher and co-founder of Bitergia and currently holding the position of CEO, he is focused on the quality of the data, research of new metrics, analysis and studies of interest for Bitergia customers via data mining and processing. Daniel earned a PhD in free software engineering in 2012 focused on the analysis of buggy developers activity patterns in the Mozilla community. He is board member at CHAOSS community, Chair of the InnerSource Commons Foundation, and board member of the Apereo Foundation.
I work at Universidad Rey Juan Carlos (Madrid, Spain), trying to help people learn about different aspects of IT, and trying to do some research. I've been involved in some free, open source software (FOSS) communities, and I become fascinated by FOSS. Probably that's the reason why most of my research focuses on different aspects of FOSS, from understanding communities, to licensing, to FOSS ecosystems, to the different process that FOSS uses to ensure quality, etc. I've also participated in activities related to the promotion and explanation of FOSS, and to work with people from companies and public administrations on FOSS adoption. I participated in the creation of Bitergia, a company devoted to software development analytics.
More info: https://gsyc.urjc.es/jgb
Links
External Links
Notice: The placeholder video image is licensed under CC BY-SA 4.0. The original image can be found hereChanges made to the image are: Cropped the image to a new ratio, part of the image was cut off.
