The Linux Foundation, a non-profit consortium dedicated to fostering the growth of Linux, has developed a checklist of compliance best practices. According to The Linux Foundation, the checklist is intended to be used by companies as an internal self-administered exercise to evaluate their compliance in comparison to top tier best compliance practices.
The Self-Assessment Checklist is constructed using at least two concepts from well-established models of process maturity such as the Software Engineering Institute's Capability Maturity Model. It is expected that the compliance practices included in the checklist will reduce the risk of compliance failure as well as deliver tangible benefit relative to the cost of those practices. A process failure modes effects analysis (FMEA) approach has been used to identify the ways a compliance process can fail and practices to prevent those failures.
The Linux Foundation's Open Compliance Program is a neutral, comprehensive software compliance initiative. The Open Compliance Program's goal is to help organizations plan improvements to their compliance process.
To download the Self-Assessment Checklist, go to The Linux Foundation website.