Open Source Software Options for Government

Home , Ganglia (software), GlassFish, Mod (video games), NonVisual Desktop Access, Openfiler, Open Web Analytics

Version 2.0, April 2012

Aim

1. This document presents options for Open Source Software for use in Government.

2. It is presented in recognition that open source software is underused across Government and the wider public sector.

3. This set of options is primarily intended to be used by Government to encourage IT suppliers and integrators to evaluate open source options when designing solutions and services.

4. This publication does not imply preference for any vendor or product. Open source software, by definition, is not tied inextricably to any particular commercial organisation. Any commercial entity can choose to support, maintain, or integrate open source software.

5. It is understood that the software market, and the open source ecosystem in particular, is a rapidly developing environment and any options list will be incomplete and may become outdated quickly. Even so, given the relatively low level of open source experience in Government, this options list has proven useful for encouraging IT suppliers to consider open source, and to aid the assurance of their proposals.

Context

1. The Coalition Government believes Open Source Software can potentially deliver significant short and long term cost savings across Government IT.

2. Typical benefits of open source software include lower procurement prices, no license costs, interoperability, easier integration and customisation, fewer barriers to reuse, conformance to open technology and data standards giving autonomy over your own information, and freedom from vendor lock in.

3. Open Source is not widely used in Government IT. The leading systems integrators and supplies to Government do not routinely and effectively consider open source software for IT solutions, as required by the existing HMG ICT policy.

4. There are significant and wide ranging obstacles to Open Source in Government. Some of these are lack of clear procurement guidance, resistance from suppliers, concerns about license obligations and patent issues, misunderstanding of the security accreditation process, and myths around open source quality, support and its development ecosystem. Open Source Software Options for Government

How To Use

1. This document presents suggestions for open source software to be considered for new IT solutions to meet business requirements, or as replacements for existing closed proprietary software. References to real world significant use of the open source software are extensively provided.

2. The primary audiences for this options list are technical and enterprise architects, commercial / procurement officers and project managers within the civil service, and those from the supplier and integrator community who influence the design and makeup of ICT solutions to Government. Customers and suppliers in the wider public sector are also encouraged to make use of this document.

3. This set of options can be used to: a. Inform the design of new IT solutions. b. Suggest opportunities for IT service or solution refreshes. c. Challenge a proposed solution that does not use open source technology.

4. This document does not present a list of pre-approved software. This document does not remove existing requirements for due diligence and assurance on the part of Government. In particular it does not transfer any technology risk from IT integrators and suppliers to Government, where it has previously been contractually placed with those suppliers and integrators.

Notes:

1. The broad criteria for open source software to be listed in this options set is that there should be a realistic opportunity for use in government. Proven significant use is a key factor, where proven can mean: a. Use at large scale, volume or high performance scenarios. b. Use in critical functions, such as supporting health or security. c. Long established history of use, perhaps over many years.

The software should also be commonly recognised as open source, primarily aligned to the OSI definition.

2. By exception, some software may be listed without references where it is felt significant opportunities for value for money may be realised. These are kept to low risk use scenarios.

3. Commentary is the opinion of the author, and does not necessarily represent the views of any government body, vendor or community.

4. If specific open source software is not listed, it does not necessarily mean that it is unsuitable for Government.

5. It should be noted that usage statistics for open source software are very difficult to obtain as there is no registration or licensing process, and there is no central source for the software.

Feedback & Suggestions

Please provide feedback and suggestions to opensource @homeoffice.gsi.gov.uk

Contents

1. Infrastructure & Server ...... 5 2. Data & Databases ...... 11 3. Middleware ...... 14 4. Application Servers ...... 17 5. Application Development & Testing ...... 19 6. Cloud ...... 21 7. Business Applications ...... 23 8. Network ...... 30 9. Web & Web Applications ...... 33 10. Geographic & Mapping ...... 39 11. Security Tools ...... 42 12. Desktop Office ...... 44 13. Specialist Applications...... 48 14. Education & Library ...... 51 15. Health ...... 53 16. Service Management ...... 54 17. Agile Development & Project Management ...... 55

1. Infrastructure & Server

Sector Software Consider as Alternative to Comments Real World Use

Server  RedHat Enterprise Linux  Microsoft Windows Server  General purpose Unix-like  London Stock Exchange has Operating operating system with proven moved from a Microsoft .Net Systems  Canonical Ubuntu Server  UNIX - Sun Solaris, IBM AIX, higher performance, availability based infrastructure to a HP UX and security record. Novell Suse Linux based  CentOs Linux infrastructure to improve  Enterprise Linux distributions are speed and stability. Reference  Novell SUSE Linux tested more than cutting edge distributions aimed at developers http://bit.ly/e2KL7w or home use.  Linux powers the global  With a billion dollar revenue, Wikipedia site. Reference Redhat is a leading provider of http://bit.ly/13ynJh support and services for enterprise grade Linux servers. It  Redhat users include the has approximately 62% of the New York Stock Exchange, commercially supported Linux US Army, . Reference market. http://red.ht/IHgZgr

 CentOS is a rebuilt from RedHat  CentOS is used by the enterprise versions of the source Mexican Federal Power code but without Redhat Commission. Reference trademarks, and usable without http://bit.ly/hrXBgb commercial support subscription costs. Support for CentOS can  Netcraft Survey March 2011 also be procured. shows top 5 most reliable web hosting providers run Linux. Reference http://bit.ly/fyHGxK

 The www.gov.uk beta uses Ubuntu Server. Reference

 FreeBSD, NetBSD, OpenBSD  Microsoft Windows Server  General purpose Unix-like  Force10 routers and operating system with proven switches have an OS based  UNIX - Sun Solaris, IBM AIX, performance, availability and on NetBSD. Reference HP UX security record. http://bit.ly/fDjqZN

 BSDs have a particular record in  FreeBSD used in products internet and network services, from major companies and underly many commercial including Apple, Blue Coat, network products. Citrix, Ironport, Juniper. McAfee and NetApp.  FreeBSD is considered stable and Reference reliable and powers some of in http://bit.ly/e2wFtE internet’s busiest sites, including for a while Microsoft’s Hotmail.  FreeBSD powers busy sites Reference http://bit.ly/iev6qZ including Yahoo! Reference http://bit.ly/3eCauv

Desktop  RedHat Desktop / Workstattion  Microsoft Windows XP,  Alternative desktops are likely to  Munich saves 4m euros with Operating Linux Vista, 7 be successful when their role or projected savings of 15m Systems use is known to not require euros over 3-4 years, moving  Canonical Ubuntu Microsoft specific applications. to Linux desktops and Examples are contact centre OpenOffice. Support tickets  CentOs Linux desktops requiring access to a reduced from 70 to 46 per web based application. month. Reference  SUSE / OpenSuse Linux http://bit.ly/HlS4hb

 220,000 Canonical Ubuntu desktops deployed in Andalusia, Spain. Reference http://bit.ly/ghu4lg

 French police deplou Ubuntu desktop to approx 90,000 desktops saving 50m euros 2004-2009, reducing the IT budget by 70% with no loss of capability. Reference http://bit.ly/119awP and 6

 Spain’s region of Extremadura moves to 40,000 Linux desktops. Compliant to ISO 27001 security. Reference http://bit.ly/wNsqGM

Virtualisation  Linux KVM  VMWare vSphere / ESX /  KVM is establishing itself as the  IBM uses KVM as basis for Server leading alternative to the it’s IaaS cloud platform.  Xen incumbent virtualisation Reference platforms. The Open http://bit.ly/d9yNqL Virtualisation Alliance which aims to promote KVM over VMWare  KVM leads other has more than 160 members virtualisation technologies in inlcudig IBM, Redhat, Intel, HP SPEC benchmarks. Reference and BMC. http://bit.ly/ovT81B and http://bit.ly/vBEtu9  Xen pioneered virtualisation but is considered to overtaken by KVM based platforms. Citrix offers commercial support for Xen based virtualisation.

 Virtualbox  VMWare Workstation,  Desktop virtualisation, developed  Oracle’s VDI enterprise Parallels for desktop by Sun, now managed by Oracle. product is based on Supports features comparable to Virtualbox. Reference commercial software including http://bit.ly/sQHcGI device passthrough. Compatible with a Vmware (vmdk), Microsoft  Virtualbox was used in the (vhd) and Open Virtualisation development phase of a Format (OVF) virtual machine disclosure website images. Light client only software programme led by the Home is ideal for development and Office. testing environments.

Remote  rdesktop  Citrix ICA  Rdesktop is a client for  Open source VNC clients are Desktop used extensively in a range 7

© Crown Copyright Tariq Rashid (HO) Open Source Software Options for Government Access Clients  RealVNC, TightVNC, UltraVNC Microsoft’s RDP protocol. of industries. Examples include the helath and  VNC servers and clients enable agriculture sectors. The platform independent remote commercial service provider desktop use. Handshaking allows RealVNC won the 2011 interoperability between different Queen’s Awards for VNC implementations. Innovation and International Trade. References  VNC implementations are http://bit.ly/KdhFJc and available for a range of server and http://bit.ly/IrE60e client platforms including Linux, Unix, Windows, MacOS and Android. Because VNC is a pixel protocol, it is more compatible and suffers from less edge-case issues than remote desktop protocols which try to intercept graphics subsystems.

Filers &  FreeNAS  Windows filer server,  Software or commodity NASes  FreeNAS is used as a backup Storage NetApp, EMC filers can be better value than the and storage capability for a  Openfiler traditional NAS products, Home Office led particularly for smaller usage development phase of a key  scenarios, or for time-limited use, UK Government website. such as for the development cycle of an ICT projects.

 FreeNAS is a software distribution of a filer supporting a range of protocols for network storage and related functions such as authentication. It supports Windows (SMB/CIFS), Apple (AFP), NFS (Unix/Linux) storage protocols, and supports hardware over iSCSI, and RAID configurations. It can be deployed on commodity hardware, virtualised, or via bootable media. It supports common network functions such as SNMP, and

 NextentaStor  Windows filer server,  Open source based hardware  Nexenta was reported in NetApp, EMC filers appliances can be more cost 2011 as growing fatser than effective than the traditional NetAPp and achieving its leading filer suppliers. 2000th commercial deployment, a total of 330  Nexentastor is an appliance based PetaBytes of storage. Users on significant open source include top 10 finance firms, technologies including the BAS group largest electronics Nexenta OpenSolaris and ZFS retailer in Netherlands, iNet, development, and is often much KT formerly Korea Telecom, cheaper than other NAS vendors. TWM regional water It provides most of the features of supplier, via Forensics. enterprise class NAS solutions, Reference such as snapshots, management http://bit.ly/hWW8Ty and utilities, tiering services, http://bit.ly/I3kxt9 mirroring, and end-to-end checksumming.  Performance tests indicate Nextenta is as performant, if  A community edition software not better, than NetApp and only version is available free of EMC products. Reference charge for users with less than 18 http://bit.ly/nBMU1c terabytes of used disk space.

Backup  Amanda, Bacula  NetVault Backup  Amanda and Bacula are  Corporate and public sector compatible across Linux, Unix, testimonials for large scale MacOS and Windows systems. deployments including Belgian Government backing up 30TB. Reference http://bit.ly/gp64Jy

Configuration  Puppet  IBM and CA configuration  Used in very large scale  The www.gov.uk beta uses Management management tools, HP deployments, and designed to be puppet. Reference OpenView configuration cross-platform, Puppet can be http://bit.ly/zVAoXc product suite used to manage the configuration of Linux, Unix and Windows  Puppet is used by large servers, as well as common infrastructures such as Wikimedia Foundation, Dell, 9

© Crown Copyright Tariq Rashid (HO) Open Source Software Options for Government applications. Rackspace, ZYnga, Twitter, NY Stock Exchange, Disney,  Puppet Labs received $8.5 million Citrix, Oracle, Zynga, Nokia, in funding from Google, VMWare twitter, sugarCRM, and Cisco at the end of 2011, Sun/Oracle, Los Alamos leading to a total of $16m National Lab, and Google. investment. Reference http://bit.ly/JgZzqW and  Enterprise edition enables audit http://bit.ly/nDXhXH and compliance.

 Puppet provides OpenStack integration.

2. Data & Databases

Sector Software Consider as Alternative to Comments Real World Use

Relational  MySQL  Microsoft SQL Server  General purpose, long established  Some of the largest and user Databases and proven. intensive online services use  Oracle DB Mysql, including Google,  Component of established LAMP Facebook, FLickr, Wikipedia,  IBM DB2 pattern stack, supporting many Nokia, Youtube. Reference common patterns including http://bit.ly/gZf5T7 Joomla, Wordpress, Drupal.  Twitter uses MySQL at scale,  Optimised for read speed. quoting their engineer Historically not designed to be “MySQL is the persistent feature rich. storage technology behind most Twitter data”. Reference http://bit.ly/HuHBVT

 Other users providing studies and testimonials include NASA, UN FAO, US Navy, Whitehouse.gov, New Zealand Ministry of Justice, Ericsson, Cable & Wireless, Nokia. Reference http://bit.ly/rE8XM

 MySQL is used by www.gov.uk beta. Reference http://bit.ly/zVAoXc

 PostgreSQL  Microsoft SQL Server  Long established and proven.  Large data oriented services Historically developed for feature use PostgreSQL including

© Crown Copyright Tariq Rashid (HO) Open Source Software Options for Government  Oracle DB completeness to compete with Yahoo!, MySpace, Sony commercial databases. Features Online, Skype, International  IBM DB2 include streaming replication, Space Station. Unmodified triggers, table partitioning and PostgreSQL scaling to stored procedures resembling petabytes. Reference Oracle’s PL/SQL. http://bit.ly/6ttyNn

 Postgreqsl was an early support  2011 Police Crime Map site of geographic information. uses postgresql database. At peak demand was 220,000  EnterpriseDB variant aims to requests/second. replace Oracle database. www.police.uk

Distributed  Hadoop  Google MapReduce  Hadoop is the leading platform  Hadoop is used by leading Large for petabyte scale distributed large scale operations Storage, Big  HBase, Cassandra  Google BigTable data storage and processing. It is including Amazon/A9 Data, NoSQL designed to detect and manage product search, Adobe, AOL,  Redis NoSQL  Intersystem’s Cache, Matisse failures in commodity compute Baidu at 3000TB/week, Ebay nodes, thus not relying on 532 node cluster and 5.3PB, expensive high-availability Facebook 1100-node cluster  MongoDB hardware. Compatible with 12PB data, Hulu media MapReduce APIs. service, IBM Blue Cloud  CouchDB Computing, Last.fm,  During 2001, several commercial LinkedIn, New York Times, offering provide support around Microsoft Powerset, Hadoop components, or Hadoop- Rackspace, Twitter, Yahoo like components, including from with more than 40,000 EMC, Oracle and IBM. nodes . Reference http://bit.ly/zI1Wp  MongoDB is a document (JSON) oriented noSQL store designed for  MongoDB is used by the large scale and performance. www.gov.uk beta. Real world use includes SAP,  HBase is modelled after Google’s MTV, sourceforge, Athena distributed database BigTable. Capital Research, Disney, IGN, The National Archives,  Cassandra developed and open Guardian., NYTimes, Forbes, sourced by Facebook provides Foursquare, LexisNexis, faster large storage balanced by CERN, Springer, and Doodle . “eventual consistency”. It follows Reference http://bit.ly/zVAoXc and the NoSQL concept. The multi- 12

© Crown Copyright Tariq Rashid (HO) Open Source Software Options for Government master architecture has no single http://bit.ly/DkEXr points of failure, and zero- downtime failed node  Adobe, Powerset, replacement. Designed for highly Stumbleupon, Yahoo!, consistent durable storage Twitter, and Facebook use through data centre failures. HBase. Reference http://bit.ly/15mgo5  CouchDB is a document oriented NoSQL store with ACID semantics  Cassandra used by and Mapreduce views and Accenture, Adobe, Ericsson filters.It is particularly strong at Cisco, IBM, Digg, HP, Netflix, managing occasionally offline openwave, Facebook, nodes, such as mobile device, to WebEx, Pitney bowes. support offline applications. It Rackspace, Real, Symantec, embraced modern web Twitter. Netflix standards, using JSON for benchmarked a system documents, Javascript for queries, performing over 1 million and HTTP for its API. writes per second. References  Redis NoSQL store is governed by http://bit.ly/g1HATc , VMWare http://bit.ly/iesAa4 and http://bit.ly/tK0wiB

 CouchDB is used by the BBC for its dynamic content platforms, Credit Suisse for internal commodity markets department, . Reference http://bit.ly/5Qu15

3. Middleware

Sector Software Consider as Alternative to Comments Real World Use

Message Bus  RabbitMQ  IBM MQ  AMPQ is the establishing open  RabbitMQ is used by NASA standard for Message Queue for their cloud platform, and  JBOSS  BEA Weblogic technologies. Its development is by the BBC for its newsfeeds. led by Bank of America Merrill Reference  Oracle and Tibco messaging Lynch, JP Morgan, Goldman http://bit.ly/o77FY5 products Sachs, Credit Suisse and Barclays, and Germany’s Deutsche Börse  India’s citizen indentity stock exchange. Other backers infrastructure used include Microsoft, Cisco Systems, RabbitMQ. Red Hat and VMware.

 RabbitMQ is a leading AMPQ implementation. RabbitMQ is supported by a VMWare group company.

Enterprise  WSO2 Carbon  IBM Websphere ESB, Oracle,  Java OSGi  Leading Danish bank uses Service Bus Tibco ActiveMatrix JBOSS ESB for mission critical  JBOSS BusinessWorks applications. Reference http://red.ht/uZ6qUI

 Mule ESB  IBM Websphere ESB, Oracle,  A successful lightweight but  Serverside case study shows Tibco ActiveMatrix enterprise grade ESB, MuleESB beat others BusinessWorks orchestration and integration according to several criteria framework. Commercial including feature coverage, enterprise edition provides vendor response time, rich features such as high availability user community, product and easier management. maturity, cost, and minimal dependencies on other

© Crown Copyright Tariq Rashid (HO) Open Source Software Options for Government  MuleSoft has always been strong products. Reference in the diverse range of platforms http://bit.ly/JgV7bq it can connect to.  Mulsesoft has ver 3,200  Mulesoft is now supported comanies using it in commercially running with a production. Significant suers Tomcat server, further reducing include Adobe, AT&T, Bank costs for application server. of America, Barclays, ebay, charlesschwab, Mastercard,  MuleESB was initially by IBM as Motorola, FedEx, Qualcomm, one of the earliest Yahoo, Xynga, CBS, implementations of an ESB Starbucks, Boing, HP, GE, Sprint, Xerox, Walmart, Cisco, Verizon, Unisys. Reference http://bit.ly/riM2yy

 Case studies include Tivo reducing development time by 75%, US case management system used by 600 courts delivery reduced cost, Netherlands e- government reducing time to deliver and avoiding vendor lockin, and reducing infrastructure costs for a health sector fundraising charity. Reference http://bit.ly/riM2yy

SOA  JBOSS  BEA Aqualogic  The JBoss Enterprise SOA  IBM reference: Camden Platform is an open-source Java Council used JBOSS created a  IBM ESB, IBM EII EE-based Service Oriented single view of the citizen to Architecture platform. It is also reduce avoidable contact part of the commercially with the contact centre and supported enterprise-grade improve the citizen offering from RedHat’s experience. Reference middleware product suite. http://red.ht/ueg4sz

 Oystercard web services

© Crown Copyright Tariq Rashid (HO) Open Source Software Options for Government have been migrated to the JBOSS SOA platform with 80% cost saving, serving approx 10m customers per day.Reference http://red.ht/vhfAgY and http://bit.ly/ueHOKa

Job  Quartz Schedular  BMC Control-M, Cisco Tidal,  Quartz is a fully featured  Quartz is used by Vodafone Scheduler IBM Tivoli Workload enterprise job scheduler, which Ireland, Covalent, US DoD for Scheduler, CA Autosys, integrates with the Java J2EE or a large e-commerce system, J2SE platforms. It is suitable for Level3 Communications, embedding in small applications Cisco in-house systems, as well as driving large complex Adobe’s LiveCycle suite. applications. Reference http://bit.ly/I40k6K

4. Application Servers

Sector Software Consider as Alternative to Comments Real World Use

Java  Redhat JBoss  IBM Websphere  JBoss implements the Java EE 6  Testimonials for Glassfish Application stack. Fully featured, it supports include social networking Server  Sun / Oracle Glassfish  Oracle / BEA Weblogic clustering, failover, load balancing sites, technology and the range of EE components consultancies, software  Apache Tomcat including JMS, JAAS, JSP and vendors, Peugeot Citroen, JDBC. US health network, Suncorp insurance. Reference  Apache Geronimo  Glassfish supports Java EE 6 http://bit.ly/PTDz2 specification and is known for scalability and speed. Supports  Siemens uses large scale clustering and load balancing. physical mail processing system using JBOSS  Apache Tomcat is a popular and Application Server, proven servlet container processing 700,000 mail implementing the Java Servlet items per hour, with 99.8% and JSP specifications. It is known availability.Reference to be embedded in commercial http://red.ht/sjAsYb products.  Jetty is used by www.gov.uk  Jetty is lighter but compliant beta. Reference application server, often used http://bit.ly/zVAoXc embedded into others offerings.  New York Stock Exchange  Apache Geronimo is a full Java EE Euronext uses JBOSS suite, currently implements Java platform. Reference EE 5 specification. http://red.ht/ugXJX1

 JBOSS Application Server use quoted by RedHat with the following: (i) Autotrader in the UK currently runs its high volume website and over 17

© Crown Copyright Tariq Rashid (HO) Open Source Software Options for Government 120 applications on JBoss Application platform, (ii) UFI / Learndirect runs online education courses and advice sessions for up to 2 million users using JBoss technology, (iii) Siemens have built a high volume, highly performant and highly available (99.8%) mail sorting application for up to 700,000 pieces of mail per hour. Reference http://red.ht/seYxXk

5. Application Development & Testing

Sector Software Consider as Alternative to Comments Real World Use

Programmming  Eclipse  Microsoft Visual Studio  Eclipse is a world leading  The Eclipse foundation has IDE integrated development 174 member companies  KDeveleop environment, originally including CA, IBM, Nokia, developed by IBM. It is designed Oracle, SAP, Adobe, ARM, to be am extensible platform, ATos, Cisco, Ericsson, and is used for a range of non- Google, Intel, Motorola, development purposes including NEC, RedHat, and diagramming for business Blackberry. Eclipse is used processes and project by Google engineers. IBM’s management. It is used as a basis Rational modelling tools use for other products, including well Eclipse, as do Fujitsu’s known commercial products. application server suite. Eclipse is established for Reference development of Ada, C/C++, http://bit.ly/g5jt1n COBOL, Java, J2EE, Perl, PHP, http://bit.ly/HHTrex Python, R, Ruby (including Ruby http://bit.ly/HO4Juu and on Rails framework), Scala, http://bit.ly/IU2WYe Clojure, Groovy and Scheme. It can also be used as a modelling tool, using schemes including UML and BPMN. Eclipse also enables unit testing via JUnit.

Web  PHP, Zend Framework  Microsoft ASP.Net  Very common component of the  Real world uses by Cisco Application LAMP pattern. (Linux Apache, WebEx, NYSE Euronext, Fox Development MySQL, PHP) Interactive Media, Fiat Group, IBM R&D Labs,  Zend Framework provides Mcafee. Reference additional libraries and http://bit.ly/o6TcFz components for developers.

Code  Git, Subversion  Visual Sourcesafe, Rational  Git is the leading distributed  One of the world’s largest Repository and Team Concert, Perforce version control system. Support and most distributed Version non-linear development, developments, the Linux Control cryptographic authentication of kernel, is managed by git. histories, and is suited to the largest developments.

Performance  jmeter  LoadRunner  Jmeter is a light but functional  Jmeter is used in the Home Load Testing and established web application Ofice led development of a testing tool, which can be key UK Government website extended by plugins from an which is expected to see active ecosystem, including from very large demand on go- Google. Vastly cheaper than live. proprietary alternatives, it is often sufficient for requirements, and in some cases more functional, for example being able to test for media streaming. Jmeter can test a range of common internet and networking protocol services including HTTP, FTP, SOAP, JDBC, LDAP, JMS, POP/IMAP, and provide reports, with tests able to parameterise variables and test assertions. It can create concurrent load though load generating threads.

 Jmeter can now operate distributed load tests through load generating nodes. Previously this was a reason for selecting proprietary products.

6. Cloud

Sector Software Consider as Alternative to Comments Real World Use

Cloud  OpenStack  Amazon Web Services,  Emerging standard with  Over 160 significant Infrastructure Microsoft Azure, VMWare, significant multi-vendor backing organisations backing Citrix providing assurance against OpenStack including single-vendor lockin and failure. Rackspace, NASA, Citrix, Dell, NTT, AMD, Intel, Cisco, Bull,  Primarily developed by NASA and Memset, NetApp, HP, NEC, Rackspace, now backed by AMD, Akamai, f5, Quanta, AT&T, Intel, Dell, Citrix, Cisco, Canonical, Deutche Telekom, Nexenta, NTT and over 160 other Yahoo, LG CNS, ClearPath. organizations. Reference http://bit.ly/e3AMz6  Provides virtual machine management (OpenStack  NASA production use of Compute) and storage OpenStack components. (OpenStack Storage). Case studies include San Diego Supercomputer  Supports Xen, KVM, Qemu and Center, MercadoLibre with Microsoft Hyper-V hypervisors. 58million customers across Latin America, Australian  Supports the open virtual Government infrastructure for researchers, Rackspace, machine format, OVF, supported by Dell, Microsoft, Xensource, RightScale cloud VMware, Redhat, IBM and Oracle. management., Fidelity Investments, AT&T, NASA, US Department of Energy . Reference http://bit.ly/I2QYHq

 Tier 1 ISP using OpenStack object storage. Reference http://bit.ly/eGQ4Nr

 Eucalyptus, Ubuntu Enterprise  Amazon Web Services,  Early re-implementation of the  Puma.com and related sites Cloud Microsoft Azure, VMWare, industry leading Amazon EC2 and use Eucalyptus. Reference Citrix S3 services for managing virtual http://bit.ly/hd9Dgy machines.

 Now forms part of commercialised cloud management offerings, including Canonical’s Ubuntu Enterprise Cloud Services.

 Allows deployment , management and dynamic scaling of private and hybrid clouds (overflow capacity to public clouds, eg Amazon)

 Supports Xen, KVM hypervisors

 OpenNebula  Amazon Web Services,  Interoperates with Amazon EC2,  OpenNebula is used by CERN Microsoft Azure, VMWare, ElasticHosts which peaked at 16,000 Citrix virtual machines managing  Users manage via Amazon AWS 400,000 jobs. References compliant APIs http://bit.ly/9SalWZ and http://bit.ly/jiB7aE  Allows deployment , management and dynamic scaling of private and hybrid clouds (overflow capacity to public clouds, eg Amazon)

 Supports Xen, KVM and VMware hypervisors

7. Business Applications

Sector Software Consider as Alternative to Comments Real World Use

Email Server  Zimbra  Microsoft Exchange Server  Zimbra was acquired by VMWare.  Zimbra is used by NTT, It offers email, calendar, global Purdue University, Comcast,  Zarafa address lists and collaboration. It US Defense Department, interoperates through open Bechtel and Raytheon. standards with a range of clients. Reference http://bit.ly/8VKcpy  Zarafa aims to replace Exchange and integrates with MS Outlook.  Zarafa customers include Provides webmail service with health sector, local Outlook look and feel. Supports authorities, retail and ActiveSync devices and Blackberry manufacturing and Enterprise Server. Integrates with education. Examples are Sixt, SugarCRM, Alfresco ECM and Brabantia, and Finnish OpenERP. Supports mail search, municipality. Reference hierarchical storage and archiving. http://bit.ly/rGBRJB and http://bit.ly/tswL5J

Search  Lucene / Solr  Microsoft FAST  Lucene/Solr is a functionaly  Lucene provides search Engine capable and scalable search capability for Wikipedia.  Xapian  Exalead engine. Can index PDF, HTML, Reference Microsoft Word and ODF formats, http://bit.ly/erRSEd  Autonomy IDOL amongst others. Lucene/Solr’s strength is in its performance and  High traffic public websites scalability. It also provides that use Solr/Lucene include features normally only found in AOL, whitehouse.gov, AT&T, the most expensive search Ticketmaster, The Guardian, engines. Netflix, news.com, dig, NASA PDS, eBuyer.com. Other users include Goldman Sachs, Disney, Apple, Cisco, NASA NEBULA, MTV. 23

Intranet,  Alfresco  Mircrosoft Sharepoint,  Alfresco founded by co-founder  30,000 public user capacity Portal and OpenText Vignette, Oracle of Documentum and former COO at AQA - Assessment & Collaboration  Nuxeo WebCenter of Business Objects. Qualification Alliance. Reference  Nuxeo is a platform for document http://bit.ly/4FY8b8 management, asset management and case management. It enables  Alfresco used by Yell.com. business applications with Sony, EA, ofwat, BBC. workflows to be designed and Reference built. http://bit.ly/4FY8b8

 Islington Council. Reference http://bit.ly/dh3W6i

 University of Westminster Intranet. Reference http://bit.ly/hlRkrX

 Liferay  Mircrosoft Sharepoint,  Liferay is a leading enterprise  Clients include Cisco, T- OpenText Vignette, Oracle portal server. It provides Mobile, Societe Generale, WebCenter functions and portlets for content Barclays,French MoD, management, blogs, instant Lufthansa, Vodafone, Allianz, messaging, SSO, message boards, . Reference calendar mail, polls, image http://bit.ly/cd5sW3 gallery, tagging, knowledge base, asset publishing and publishing workflow. It is JSR168 compliant.

Document  Alfresco  Mircrosoft Sharepoint,  Alfresco is CMIS 1.0 compliant.  Cisco Internet Business and Content Opentext, Filenet, Solutions Group. Reference Management  Nuxeo Documentum http://bit.ly/hl250J System (CMS)  French Air Force document information system. Reference

 Alfresco is used by Irish Revenue Commissioners. Reference http://bit.ly/bJXbSy

 Customers include Yell., Toyota, SNCF, Fox, La Poste, Merck, Cisco, Endeca, KLM, French MoD, French MoJ, French Interior Ministry. Reference http://bit.ly/4FY8b8

Records  Alfresco  Mircrosoft Sharepoint,  CMIS 1.0 and DoD 5015.02  Islington Council. Reference Management Documentum, Meridio, certifications. Implements http://bit.ly/dh3W6i (EDRM) TRIM, Objective. Sharepoint protocol to act as substitute backend.  EADS 20,000 paper files. Reference http://bit.ly/hRJx4V



Workflow,  Nuxeo  Sharepoint  Nuxeo is a platform for document  Nuxeo is used by the BBC, Forms & Case management, asset management French Atomic Energy Management  FoxOpen and case management. It enables Commission, The Press business applications with Association, French energy workflows to be designed and ERDF, French Ministry of built. Defence and related groups including air force, La Poste,  FoxOpen is developed by French Interior Ministry for Department of Energy and public portal, Electronic Arts, Climate Change and used for and a a telco with 160million rapid application development for mobile customers . workflow, MVC based and case Reference handling applications. http://bit.ly/I0AHEF

 Foxopen Department for Energy and Climate Change 25

© Crown Copyright Tariq Rashid (HO) Open Source Software Options for Government (DECC) applications include Oil & Gas Portal, FOI case management, correspondence handling. Also used by BIS, MoD, Boeing and Australian Dept of Health. Reference http://bit.ly/gtU1ZY



Enterprise  OpenERP  SAP, Oracle, Microsoft  Open ERP is commercially  OpenERP customers include Resource Dynamics, PeopleSoft, SAGE, developed and supported. La Poste, Veolia, Danone, Planning  Openbravo SAP Modular capabilities include sales, Oracle. Reference (ERP) CRM, project management, stock http://bit.ly/ej0HHR management, accounting and human resources. Also provides  OpenBravo 3 times winnder vertical industry specific of Infoworld software applications over OpenERP. awards. Reference http://bit.ly/9K9Jyx  OpenBravo is commercially developed and supported.  Open bravo customers Includes finance and accounting, include BBVA, Coapte French sales, purchasing, inventory, healthcare, Basque City Hall. procurement, manufacturing, Reference projects, and business http://bit.ly/mClVN intelligence.

Customer  SugarCRM  Microsoft Dynamics,  SugarCRM is a commercially  SugfarCRM customers from Relationship SageCRM, Salesforce successful CRM system providing comms, financial, healthcare, Manegemnt sales-force automation, public , professional services, (CRM) marketing campaign manufacturing, technology management, customer support, and retail sectors include uzo mobile device CRM and reporting. (Portugal’s largest telecoms provider), One Financial,  In 2011, SugarCRM joined the HealthScreen (replacing IBM Global Alliance Portfolio for Siebel),State of Oregon, cloud solutions. InterAct (public safety and security), Thomas Cook, ThyssenKrupp, Avis, General 26

Business  Pentaho BI Suite  Oracle, IBM, Informatica  Includes ETL, OLAP, reporting,  Customers include Camden Intelligence dashboards, workflow and data Borough, US Naval Air (BI) mining capability. Integrates with Systems Command, Harris Hadoop for large scale data Computer Systems, Sun analysis. Microsystems, Specsavers, NHS Islington, Brussels Airport, Norways TV2. Reference http://bit.ly/ehITaM

Data  Talend  IBM, Oracle, Software AG,  Mature data integration tools  Customers include ebay, Integration Tibco, Progress, Informatica covering file migrations, data Deutsche Post, Allianz, ING, warehousing, ETL, master data Alcatel-Lucent, AOL, BNP management, data quality Paribas, Orange, Virgin profiling. Application integration Mobile, Sony, SNCF, Land and ESB functions. Integration Registry, UNHCR. Reference with Hadoop aims at “big data” http://bit.ly/4odsN and analysis. http://bit.ly/4odsN

 Talend is one of the largest  The Irish Revenue companies with an open source Commissioners use Talend business model. for data integration and quality. Reference http://bit.ly/HNLvoP

Reporting  Jasper Reports  Crystal Reports, Business  A flexible reporting platform,  JasperSoft, which also Objects used on its own, but also found provides business integrated into other offerings. intelligence capability, has a Jasper is particularly developer large number of customers friendly, enabling integration of across several sectors who reporting functions to have often replaced applications. proprietary technologies. These include a major Irish  Reports can include dashboards, Government Department tables, crosstabs, charts and resulting in significant savings, Virgin Money, USA 27

© Crown Copyright Tariq Rashid (HO) Open Source Software Options for Government gauges. National Institute of Food and Agriculture, and several  Active ecosystem of related tools tax authorities in the include report servers such as the Netherlands. References open source JasperServer, to http://bit.ly/Fxapm and provide additional functionality http://bit.ly/HLcQsC such as report scheduling. Graphical report design can be achieved with iReports. Other tools create reports to Excel, Word and PowerPoint formats, in addition to HTML, PDF, CSV and XML.

 OpenReports  Crystal Reports, Business  Flexible web based reports server  Customers include leading Objects which can use several reporting USA retail store Macy’s, and engines, including Jasper, Senegal public sector for JFreeReport, JXLS and Eclipse microfinance, health BIRT. insurance and HR applications. At Montpelier  Server manages permissions and University it has replaced security, scheduling and auditing. Business Objects for many tasks. Reference http://bit.ly/IMP6Dc

Business  Activiti BPM  IBM products for BPM  Activiti is now governed by  Activiti is used by Scarlet to Process Alfersco. automate the provision of Modelling  Intalio BPM multi-play telecoms. (BPM)  Intalio is a widely deployed Reference  ProcessMaker business process management http://bit.ly/IrGNib system, based on the popular Eclipse platform.  Processmaker’s customers include Lenovo, BBVA,  Processmaker is a web based GTBank, Toyota. Reference workflow and BPM system. http://bit.ly/IrHk3K Colosa which develops ProcessMaker meets ISO9001  Intalio implementation gold quality management certification. partners include CSC a global systems integrator. Technology partners include 28

© Crown Copyright Tariq Rashid (HO) Open Source Software Options for Government VMWare and HP. Clients include Thales, US Army, US DoD, US DoE, Accenture, CapGemini, CSC, Orange, Sky, Vodafone, Veolia, BP, BNP Paribas, Santander, Allianz, Samsung, Toyota, Irish Revenue, New Zealand MoJ and Brazilian government, Singapore Airlines, Informatica. Reference http://bit.ly/IypgFJ http://bit.ly/IgqasQ and http://bit.ly/Igr8Fs

Human  OrangeHRM  Oracle, SAP  OrangeHRM is a corporately  Customers include Landmark Resources developed HR management property management . (HR) system that covers leaving, Reference joining, time management, http://bit.ly/tMal9s recruitment, performance, expenses, leave, reporting. There are delivery partners across the globe.

8. Network

Sector Software Consider as Alternative to Comments Real World Use

Network  Nagios, other  BMC, CA, Orion  Nagios has heritage in many ISPs.  Nagios provides monitoring Monitoring Often used with the ganglia for the Wikipedia  OpenNMS  IBM Tivoli, HP OpenView graphing system. infrastructure. Reference http://bit.ly/erRSEd  Zabbix  OpenNMS is a scalable enterprise class network monitoring system.  Zabbix is used by large  Hyperic HQ Integrates with service organisations such as DEAC management Request Tracker. IT services across four  GroundWork continents, leading Polish  Hyperic acquired by VMware also telecoms Netia monitoring supports monitoring of 20,000 parameters, NTT  ZenOSS virtualised infrastructure. In Comms, large Brazilian addition to server, application energy company PetroBras.  Opsview and performance management it Reference has integration into VMWare’s http://bit.ly/swdGQw vshpere products.  Hyperic is used by Yahoo,  Zabbix is a mature monitoring Cisco, hi5, Goldman Sachs, framework with agents for many Deutsche Bank, Avis, operating systems and software comcast. Reference stacks. http://bit.ly/Ig7iHn

 ZenOSS is a leading network  ZenOSS is used by monitoring system, deployed to Rackspace, LinkedIn, 35,000 customers across 35 VMWare, Motorola, Los countries. Alamos, LexisNexis, Deutsche Bank, US Army,  Opsview, using the nagios core, Broadcom, Telstra, can monitor a range of CapGemini. Reference applications, operating systems http://bit.ly/vrdvui and hardware. Functions include  Opsview is used by 30

© Crown Copyright Tariq Rashid (HO) Open Source Software Options for Government distributed monitoring, service Symantec, Sky, Siemens, desk integration, and reporting. Telefonica, US Army, Plusnet Opsview Enterprise 3.10 won the ISP, Adecco, Lidl, Allianz, and 2011 Techworld One to Watch Irish Revenue. Reference award. http://bit.ly/kMpTel

Mail Transport  Sendmail  Microsoft Exchange  Sendmail has been powering  Postfix users include the email globally since the early 80s. University of Malaga for  Postfix, Exim approx 100,000 mailboxes,  Postfix is a mail transport agent, Connect.com.au (now AAPT) originally developed by IBM, amongst Australia’;s largest which for which complex network service providers, configuration is relatively easier. US Navy. Reference For example, it supported virtual http://bit.ly/JI5d7l domains early and in a relatively manageable manner.  Sendmail is the most popular MTA on the  Developed at the University of internet, and though it’s use Cambridge, Exim is an is declining it still leads. administrator and developer Reference friendly MTA. It allows flexible http://bit.ly/JBqNMS builds and extensions, and greater number of mail policy  Exim is popular within large controls. ISPs and universities, handling thousands of mail accounts. Reference http://bit.ly/8ri5mx

Certificate  CA-Cert  Digicert, Entrust, GlobalSign,  OpenCA is open source software  N/A Authorities Thawte, Verisign. to implement a certificate  OpenCA authority. It is used by leading project ssuch as OpenLDAP, OpenSSH and Apache.

 CACert is a community driven certificate authority which issues public key certificates free of charge. CAcert has over 200,000 verified users and has issued nearly 800,000 certificates as of 31

Network  Wireshark (formerly Ethereal)  NetWitness, Capsa  Wireshark is the de facto protocol  Wireshark is the de facto Packet analyser. It has very protocol analyser in the Capture and comprehensive abaility to decode security and developer Protocol and present a wide range of community. Analyser protocols running over a network. For very large infrastructures wireshark may be paired with hatrdware optimised to capture large volumes of network traffic.

Network  Vyatta  Cisco Integrated Services  Provides network services and  Customers include Toyota, Services Routers, Cisco ASA security applications based on open CBS, CSC, EMC, Dell, Nokia, appliances source core and software, VMWare, Rackspace, including routing, VPN. FranceTelecom, US Homeland Security, US  Commercial support available. Justice Department. Considered cheaper than Reference incumbents http://bit.ly/gbFoTu

 Similar interface to Juniper JUNOS and Cisco IOS, as well as graphical interface.

Telephony  Asterisk  Cisco Unified  Asterisk is a mature software  Customers of services based VOIP Communications Manager PBX, covering PSTN and VoIP on Atserisk include US Army, services. Features include Symbian Foundation, La  Hardware appliances voicemail, conference calling, and Poste, University of automatic call distribution. Pennsylvania. Reference Protocols supported include SIP, http://bit.ly/b8zhvN MGCP, H323. Asterisk is known to support commercial PBX products.

9. Web & Web Applications

Sector Software Consider as Alternative to Comments Real World Use

Web Server  Apache web server  Microsoft IIS  Apache is the web server behind  Netcraft survey April 2011 the majority of internet websites, shows 61% of internet and has been dominant for 15 websites hosted by Apache, years. compared to 18% by Microsoft IIS.

 Apache serves the global Wikipedia site. Reference http://bit.ly/13ynJh

 Lighttpd, nginx, Cherokee  Microsoft IIS  High performance alternatives to  Netcraft survey April 2011 Apache. Designed for shows 6.5% of the million performance and scalability, not most active sites served by for a wide range of functionality. nginx.

 Nginx and Cherokee have built in  Lighttpd serves static media streaming capability to content for Wikipedia. serve you-tube like capability. Reference http://bit.ly/erRSEd

 Lighttpd is used by Youtube, Sourceforge and torrent sites facing more than 1000 hits per second. Reference http://bit.ly/g5bke7

 Nginx is used by www.gov.uk beta. Reference http://bit.ly/zVAoXc

Web Cache,  Squid, Varnish  F5 BIG IP, McAfee Web  Squid and Varnish are popular  Squid cache supports the Reverse Gateway, Zeus, Blue Coat, web caches and reverse proxies. global Wikipedia and Flickr Proxy Microsoft Proxy Server They are ideal for offloading from sites. Reference content heavy dynamic web http://bit.ly/dJi4U1 applications.  Varnish is used by Facebook,  Varnish is designed to be, and to serve billions of requests evidence suggests, more per day, and MercadoLibre performant than squid and Latin America’s largest e- provides greater visibility of its commerce site. Reference operation. Squid is a more http://bit.ly/Ie6TYC established product.  Varnish is used by www.gov.uk beta. Reference http://bit.ly/zVAoXc

Flash Media  JWFlashplayer  Adobe Flash Player  JWFlashplayer is compatible with  JWFlashplayer users include Player media sources hosted by CDNs Whitehouse, Thomson  Flowplayer such as Amazon CloudFront and Reuters, Avis, AT&T, Akamai. Harvard, Intel and Nasdaq. Reference  JWFlashplayer also supports http://bit.ly/tRAwk6 HTML5 playback, avoiding the requirement for Flash. This makes it compatible with non-Flash devices such as the iPhone and iPad.

Web Content  Drupal  Morello, Vignette/Opentext,  Open source web content  Drupal is used by the UK Management Interwoven/Autonomy management systems are a very data.gov.uk and the USA System  Joomla dynamic and established market whitehouse.gov. Other sites (CMS) segment where the case against include fastcompnay,  Plone proprietary products is strong. Greater London Authority, Features commonly include web Rutgers University, the publishing, blogs, content primary Economist site syndication, discussion forums, (migrating from coldfusion and large pool of community and Oracle), and the World developed extensions. Food Programme. WordPress, Drupal and Joomla References 34

© Crown Copyright Tariq Rashid (HO) Open Source Software Options for Government feature significantly amongst the http://bit.ly/dawP27 top internet sites. Reference http://bit.ly/9rCzRg and http://trends.builtwith.com/cms http://nyti.ms/3NmpYO

 Drupal is a very modular cms and  Joomla is used by many web application framework, with government sites. Joomlagov much of its functionality provided lists geographic locations of by contributed modules. Aside over 3000 government from the thousands of optional sector Joomla sites including modules, the core modules Italy (765 sites), Spain (209), include content creation, user Chile (135), USA (94), UK management, logging, search and (76). UK government users workflow functions. The Drupal include MoD and Defra. community is very active, with Other users include the EU, 10,000 developer accounts, with UN and WHO . Joomla is very 3000 attending the 2011 successful across other developers conference. Drupal sectors including arts, aims to be a general purpose web business, health, media, framework, distinct from single- technology and education. purpose products such as References blogging tools. http://bit.ly/jGCXxO and http://bit.ly/GcSJ  Joomla is a leading web cms, with a more community focus. Joomla  Very large number of Plone won the Packt Publishing Open customers include Brazilian Source Content Management Government, Norwegian System Award in 2006, 2007, and Archive, Kent Connects and 2011.[ Kent CC, Scottish National Party, Warwickshire Police,  Plone is particularly suited to UK MoD Defence Academy, more complex applications, NASAScience, Keble Oxford workflows. It also has a strong and Bristol University, NHS security record. Plone’s interface Networks. Reference confirms to accessibility standard http://bit.ly/vThQAn WCAG-AAA higher than most competitors. Plone has strengths  Plone is also used by the FBI, in standards conformance, access US Dept of Energey, control, internationalisation, and European Environment security. Agency, United Nations, . Reference http://bit.ly/g0XtIr

 Wordpress  Morello, Vignette/Opentext,  Wordpress is a leading web  UK Civil Service website Interwoven/Autonomy, content publishing system, redeveloped in 6 weeks from Sharepoint primarily focussed on blog- legacy platform to publishing, but now extending to Wordpress in 2011. more general content and Significant users of functions. Like other open source Wordpress include Ebay, web content systems, it has an Yahoo, Digg, Ford, Wall active ecosystem of extension Street Journal, Sony, plugins. Usage statistics suggest it Samsung, NYTimes, CNN, is the most common web content General Electric, Reuters, platform. Forbes, GM, UPS and VW. Reference http://bit.ly/qhocs2 http://bit.ly/3RU64 and http://bit.ly/QRzxo

 Approximately 63% of the top million sites use Wordpress according to trends monitor builtwith.com. Reference http://bit.ly/bJzvxB

 Squiz  Morello, Vignette/Opentext,  Squiz is the only open source web  Squiz clients include Ministry Interwoven/Autonomy content management solution in of Justice, Electoral  EZ Publish the Gartner 2011/12 magic Commission, Australian quadrant. Federal Government, Royal Parks, Westminster Abbey,  Squiz aims to minimise IT Royal College of Nursing, involvement in the operation of a London School of Economics, web content management University of Oxford, system, emphasising ease of use Hargreaves Lansdown, for content roles. Australian Securities Exchange, and the V&A.  EZ Publish is an established Reference content management and http://bit.ly/bC0g4G publishing system, with functions for ecommerice, online  EZ Publish supports the communities and role-based customer facing sites for Elle Magazine, Vogue Autralia,

© Crown Copyright Tariq Rashid (HO) Open Source Software Options for Government access. Eurostar, CNBC, Cosmopolitan, Oslo Stock Exchange, Financial Times, EMI Music, BMW, Wall Street Journal, Heinz, European Space Agency, US DoD, French MoD. Reference http://bit.ly/kBaub and http://bit.ly/Ji294o

 Alfresco  Morello, Vignette/Opentext,  Includes web authoring, workflow  Fox Broadcasting Company Interwoven/Autonomy and publishing. public site Fox.com is supported by Alfresco. Reference http://bit.ly/ffAhmW

Blog Engine  Wordpress  sss  Leading blog engine with rich  Microsoft Live Spaces functionality. Users benefit from migrates to Wordpress blog large pool of community engine. Reference developed extensions. http://bit.ly/d545X0

Wiki  MediaWiki   MediaWiki is the leading wiki  MediaWiki is the software engine. behind global scale WikiPedia. Reference http://bit.ly/13ynJh

 The developers of www.gov.uk beta use Mediawiki. Reference http://bit.ly/zVAoXc

Web  Open Web Analytics (OWA)   OWA is a leading web analytics  N/A Analytics with support for bespoke sites  Piwik and integration into WordPress, Drupaland MediaWiki. Offers campaign tracking and user in-

 Piwik aims to offer functions similar to Google Analytics.

10. Geographic & Mapping

Sector Software Consider as Alternative to Comments Real World Use

Geographic  Quantum GIS  ESRI products such as  Open source Geographic  Quantum GIS is Information ARcView and ArcWeb and Information Systems (GIS) can commercially supported with Systems (GIS)  GRASS GIS ArcGIS potentially make significant providers based in most savings in a sector where European countries. Case  Bentley Map, Intergraph proprietary tools are expensive. studies from a UK services GeoMedia company include the  With a decade of continuous Environment Agency’s development, Quantum GIS is a National Flood and Coastal desktop application, enabling Defence Database viewing, editing and analysis of modelling. Reference geographic data. It supports a http://bit.ly/I0ATqS range of data types and sources including ESRI shapefiles.

 GRASS GIS was originally developed by the US Army, and is now used widely across academia an industry.

Web  GeoServer (WMS reference  ESRI ArcGIS Server, Envinsa,  GeoServer is the reference server  GeoServer is used by UK Mapping server) GeoWebPublisher, for the WMS standard. Ordnance Survey, French GeognoSIS, GeoMedia, National Mapping Agency,  UMN MapServer Oracle MapViewer, SIAS,  UMN MapServer was originally World Bank, UN Food and ERDAS APOLLO developed by NASA for its public Agriculture Organisation, NY satellite imagery. City IT and Telecoms. Reference http://bit.ly/b5h1fH

 MapServer is used by Minnesota DNR to provide

 OpenLayers  Google Maps, Bing Maps  OpenLayers is a web client sie  OpenLayers is used by javascript library for rendering OpenStreetMap. Reference  MapFish map data. http://bit.ly/6Zy41J

 Mapfish, compliant with Open Geospatial Consortium standards, combines tools such as OpenLayers and GeoExt.

Spatial  PostGIS  Oracle Spatial  PostGIS enables the Postgresql to  PostGIS is used as a data Database work with geospatial data. It is a backed by many products,  Commercial products with mature product, initially released including established spatial extensions including in 2001. PostGIS is used by many commercial products such as Sybase/Boeing SQS, DB2, geospatial products, including ERDAS Apollo and CadCorp Informix those for spatial analysis and SIS. Reference mapping. http://bit.ly/sW8e1l

 PostGIS underlies the mapit data and webservice supporting the GDS www.gov.uk domain’s geolocation functions. Reference http://bit.ly/92Rr9P and http://bit.ly/zVAoXc

 Other case studies for PostGIS include SITEL for Mexican government agencies, GlobeXplorer migrating from Informix serving over a million requests per day from terabytes of data, and the French national mapping agency maintains over 100 million topographical features. A UK example is 40

© Crown Copyright Tariq Rashid (HO) Open Source Software Options for Government Infoterra satellite and aerial imagery which stores the entire Ordnance Survey database with PostGIS Reference http://bit.ly/I3ux9p

11. Security Tools Not all public sector requirements for security tools require specific product certifications, and a wider set of options can be explored. For example, the use of SSH encryption can be sufficient for some scenarios, and the cost of more expensive infrastructures can be avoided.

Sector Software Consider as Alternative to Comments Real World Use

Disk and  TruCrypt  Commercial products  TruCrypt is easy to use and offers  N/A Data capabilities similar to market Encryption  SSL leaders. It supports Widows, Linux and Mac OS. Functions include transparent real-time on –the-fly encryption, hidden containers, pre-boot authentication for Windows, multiple keys, hardware acceleration, and two factor authentication. Can encrypt whole disk, partition, file and swap space.

Password  John the Ripper  Commercial products  Logn established tool for brute  N/A strength force attacks against passwords testing

Intrusion  Snort  Commercial products  Snort is an network intrusion  N/A Detection detection and prevention system. Systems It is not a host based intrusion or prevention system.

Portscanning  nmap  Commercial products  Nmap is a security scanner which  N/A and Host aims to identify and discover host

Vulnerability  Nessus, OpenVAS  Commercial products  Nessus was a leading vulernability  The German Federal Office Scanning scanner. It became closed for Information Security  Nikto proprietary and was forked to (similar to the UK’s OpenVAS. It has a very CESG)supported various comprehensive database of features of the OpenVAS checks to test for vulnerabilities, software framework as well including the ability to execute as various network some attacks. vulnerability tests. Reference http://bit.ly/LwQLz  Nikto is a web server / application specific vulnerability scanner.

12. Desktop Office

Sector Software Consider as Alternative to Comments Real World Use

Desktop  Libre Office / OpenOffice  Microsoft Office  LibreOffice is community  OpenOffice has significant Office developed and has significant use in some sectors globally Applications development partners and including, The Guardian momentum. newspaper since 2008, 20,000 school computers in  OpenOffice is now governed by Andlaucia Spain, 20,000 Apache, originally developed by desktops at Vietnam Sun as StarOffice. Department for Education, 80,000 PC at Extremadura  The Document Foundation, which Spain, French National develops LibreOffice is supported Assembly, 70,000 desktops by companies such as Google, at the French Gendermerie, RedHat, and Intel. City of Vienna, 50,000 Brazil Federal desktop, Bangkok  LibreOffice is planning Android, Airways, Future Publishing UK, Peugot Citroen, Travel iOS, and web-only cloud implementations. Replublic. Reference http://bit.ly/bf0RFN  The interoperability gap between  LibeOffice/OpenOffice and IBM’s corporate Symphony office suite is based on Microsoft Office is continuously being narrowed. OpenOffice.

PDF Creation  PDFCreator  Adobe Acrobat  Creation of PDFs from any  Inforworld 2008 Open Windows application that can Source Sofwtare award. print. Provides more control over PDF creation than alternative “print to file” solutions. Features include digital signing, PDF/A archives, merging PDFs and

Media Player  VLC  QuickTime, Adobe products  VLC is an established “swiss army  N/A for Audio & knife” of media players with Videos support for a very large range of audio and video formats.

Project  Project.net  Microsoft Project  Project.net is an anterprise scale  Project.net is listed in Management project management application. Gartner Magic Quadrant for IT Project and Portfolio Management Applciations. Reference http://bit.ly/cX3O8w

 Customers include FT Services, Genesys Conferencing, City of San Francisco, Trak, Penn State University. Reference http://bit.ly/uORUMi

Mind  Freemind, Xmind  MindMaple, MindManager,  Freemind and Xmind are both  Xmind is used by KBC, Mapping MindGenius, Visual Mind “mind mapping” tools, enabling netpioneer, MIgros, Rovio, the creation and editing of Union Investment, .  Microsoft Visio concept or idea maps. Further Reference http://bit.ly/RVX5 feature include exporting to PDF, HTML or document formats, and  Freemind testimonials are the production of project listed on the freemind management charts. website. Reference http://bit.ly/2iJyWM

Email  GnuPG/GPG  Symantec / PGP Corporation  OpenPGP based products are  N/A Encryption products typically used to encrypt email communications.

 There are several

© Crown Copyright Tariq Rashid (HO) Open Source Software Options for Government implementations of the OpenPGP standard RFC4880. GnuPG is an open source implementation and Windows interfaces are available.

Email  Outlook plugin for email  Boldon James  Outlook plugin is developed by  The National Archives Labelling labelling from The National The National Archives Archives

Web Browser  Firefox, Chrome/Chromium  Microsoft Internet Explorer  Firefox,w hich grew out of the  Guardian reports that in Mozilla/Netscape efforts, became Europe Firefox has overtaken the leading browser noted for it’s Internet Explorer as most standards compliance. widely used browser. Reference  Recently during 2011, Google’s http://bit.ly/fQ2hXH Chrome browser was measured to be on track to become the  Department of Health uses leading browser. multiple web browsers, including Firefox.  Historically, Internet Explorer has been considered by many not be  2011 IE has only 38.9% user as standards compliant as share, trends show Chrome alternative browsers. It’s use of will become dominant ActiveX as a mechanism has led browser soon. some to consider it to have a http://bit.ly/rqnlQj greater attack surface. It is best practice for web developers to test against a range of browsers, with IE-only support considered bad practice.

Assistive  NonVisual Desktop Access  Dragon  Screen reader for Windows,  NVDA has received Technologies (NVDA) providing feedback through significant global recognition synthetic speech and Braille. and awards. Yahoo! Uses Supports over 20 languages. NVDA for testing and Integrates with Internet Explorer, demonstration. References Outlook Express, Microsoft Word 46

© Crown Copyright Tariq Rashid (HO) Open Source Software Options for Government and Excel, LibreOffice and http://bit.ly/fJKfhq OpenOffice, Thunderbird and Firefox. Protocols supported  The www.gov.uk beta is include WAI-ARIA for web tested against several applications, Microsoft Active usability tools, including Accessibility. NVDA. Reference http://bit.ly/zVAoXc

13. Specialist Applications

Sector Software Consider as Alternative to Comments Real World Use

Statistics &  GNU R  S/S-plus, SAS, SPSS  GNU R is the leading and mature  Gnu R is becoming teh Data Analysis statistics and numerical defacto statistical computing system. It is now the programming environment, established lead in academia and as evidenced by subject increasingly in industry, texts and it’ use in displacing commercial products. universities.

 Real world examples include use by Google, Pfizer, Merck, Bank of America, Stanford University, InterContinental Hotels Group and Shell. Reference http://nyti.ms/4xpont

Data Mining  RapidMiner  SPSS, SAS PASW, SAS  Leading data mining and  KDnuggets leading Enterprise Miner, MATLAB, exploration toolkit, providing professional newsletter for Oracle DM, , Excel access to proven tools, such as data mining sector poll WEKA, through a graphical user shows RapidMiner as most interface. Includes text mining used tool. Reference capability. http://bit.ly/dy9XwP

Audio Editing  Audacity  Wavelab, Amadeus,  Audacity is a cross platform  Audacity was used to QuickAudio, Logic Pro, mature audio recording, editing, process some ofthe audio Wavestudio. mixing and processing tool which for a feature film. It is also does a few things very well. It is used in education as a cost used by professional, be they in effective audio tool. film production or music Reference teachers. Audacity is not a music http://bit.ly/c0JXSc and

Video Editing &  OpenShot  Adobe GoLive, Quicktime  Openshot is a video editor,  Both Openshot and Transcoding Pro, designed to be easy to use and Avidemux were used in the  Avidemux perform the most common development phase of a functions effectively. programme to support a public disclosure of material  Avidemux is a powerful tool for led by the Home Office. converting between audio and video formats, with very fine control over the format and transcoding parameters.

Image & Photo  GIMP  Adobe Photoshop  GIMP is a very capable image  N/A Manipulation editor and for many use cases can be used instead of proprietary software. Installers for Windows are available.

Desktop  Scribus  Adobe InDesign, Quark  Scribus is a rapidly maturing and  N/A Publishing effective desktop publishing system. It is currently capable of supporting most common design and layout tasks, and can publish production quality output, including pre-flight checks.

Vector  Inkscape  Adobe Illustrator  Inkscape is a rapidly maturing  N/A Drawing vector graphics design tool. It has features normally only found in the most expensive products. It is capable of producing production quality output.

Diagramming  Dia  Microsoft Visio  Support for open standard  N/A formats such as EPS and SVG. 49

 Visio diagram support is improving in LibreOffice

CAD  QCad  AutoCAD  Simple CAD application uses  TBA AutoCAD DXF common file format. Windows installer available.

3DModelling,  Blender  Maya  Comparable to commercial  Feature films have used Rendering & software, used to render Blender for support, Animation production quality scenes and animation and effects. animations. Reference http://bit.ly/huBi3R

 TV commercials. Reference http://bit.ly/gA5ze2

14. Education & Library

Sector Software Consider as Alternative to Comments Real World Use

Course  Moodle   Learning management system for  Moodle has significant use in Management course creators and the education sector, administrators. Very successful in including Open University, the academic sector, it is Australian National designed to be extensible, and University, London School of has an active ecosystem of Economics. April 2012 contributors. Moodle has a user-base of approx 66,000 registered active sites with 58 million users in 6 million courses in 215 countries and in more than 75 languages. The UK Open University is the thrid largest deployment for 840,000 users and 7000 courses. Reference http://bit.ly/gXRiAV and http://bit.ly/JBndAm

Integrated  Koha  SirsiDynix, Symphony,  Koha is establishing itself as the  Significant global use of Koha Library Unicorn, ExLibris, Talis leading open source library including many European Management management system. It is entirely libraries. UK examples of web based, making integration various kinds of library relatively simple, and cloud include management solutions exist. It supports consultancy Booz and Co, common library management Race Equality Foundation, standards. Royal Pharmesutical Society of Great Britain, Tavistock Hospital, The National Archives, The Kings Fund. Significant use on Spain, 51

15. Health

Sector Software Consider as Alternative to Comments Real World Use

Patient  VistA  Commercial products  VistA is a health information  VistA is used by the Veterans Records system centred around health Health Association, which records. It is used extensively in manages the largest medical the US Department of Veterans system in the USA. This Affairs. It consists of covers over 8 million approximately 160 modules veterans, 180,000 medical covering clinical care, financial personnel operating 163 functions, and infrastructure. hospitals, over 800 clinics, and 135 nursing homes throughout the USA. Nearly half of all U.S. hospitals that have a complete enterprise- wide implementation of an electronic health record system are VA hospitals using VistA. VistA is also used by the World Health Organisation, and in countries such as Mexico, Finland, Germany, Nigeria, India, Brazil, and Denmark. Reference http://bit.ly/aNmMd

Sector Software Consider as Alternative to Comments Real World Use

IT Service  OTRS ITSM  Remedy  OTRS ITSM is the leading open  100,000 deployments Management source helpdesk and service include Philips, NASA, CSC, management solution. It aligns to Lufthansa, Fujitsu, Nokia, the ITIL model for service Deutsche Post, Boeing, management. Virgin Australia, New York State Department of Civil  It is the only open source solution Service, German Office for PinkVERIFY certified as ITIL v3 Information Security (similar compliant. to UK CESG), . Reference http://bit.ly/I7QcZh  Includes change request and SLA management, self service, dashboards and impact reporting.

File Audit  DROID  No commercial analogue  TNA developed for Digital  The National Archives Continuity Programme, DROID inventories and analyses files held by an organisation by intrinsic pattern analysis. NO known commercial competitor.

Sector Software Consider as Alternative to Comments Real World Use

General  trac  JIRA  Trac offers several development  trac is used in the functions, of which project development of significant  Microsoft Project management (roadmap, software as varied as the milestones) and issue or ticket lading blog engine tracking are key. Other features Wordpress, leading include integration with version macports, GRASS GIS management systems and software, to the Haiku OS. reporting. Online trac supported Organisations include NASA, projects are recognised by their Oxford University, Nokia, common function bars showing Qype, . Reference wiki, timeline, roadmap, browse http://bit.ly/aVSyi8 source, view tickets, new ticket and search functions.

Bug Tracking  Bugzilla  JIRA  Long established web based bug  Bugzilla is extensively used tracking system, open sourced in globally, and is established 1998 and actively developed since over a decade. Notable users then. include RedHat for their enterprise products, Novell,  Bugzilla is focussed on software NASA, Facebook, Akami, defect tracking, and not as Nokia, NYTimes, Yahoo, general purpose issue ticket EMC, Motorola. The Bugzilla tracking or project management site lists over 1000 tool. Used by many projects and organisations.. Reference over many years, it has refined to http://bit.ly/bWszW support an established defect and feature request tacking workflow, including assignment of new items.