Adopt new proposed structure and terminolgy with SIGs reporting to WGs

Signed-off-by: Arnaud J Le Hors <lehors@us.ibm.com>
kestewart · Apr 21, 2022 · fc77f38 · fc77f38
1 parent cf3dfc7
commit fc77f38
Show file tree

Hide file tree

Showing 2 changed files with 26 additions and 15 deletions.
diff --git a/organizational-structure-overview.md b/organizational-structure-overview.md
@@ -1,8 +1,8 @@
 # OpenSSF Governance & Org Structure
 
-## Charter
+## OpenSSF Charter
 
-Overall governance of the OpenSSF is defined in [the Foundation Charter](https://cdn.platform.linuxfoundation.org/agreements/openssf.pdf). 
+The overall governance of the OpenSSF is defined in [the Foundation Charter](https://cdn.platform.linuxfoundation.org/agreements/openssf.pdf) (PDF file). 
 
 
 ## Definitions
@@ -13,15 +13,26 @@ The OpenSSF is comprised of instances of the following categories of official gr
 - **Committees** are formed by, and report to, the Board. Broadly speaking, Committees handle non-technical matters as needed by the GB, wherein a named set of people are tasked with handling a specific objective. Like the Board meetings, Committee meetings may or may not be open to the public.
 - The **Technical Advisory Council** (TAC) is responsible for the general success of all Technical Initiatives (defined below). TAC meetings are generally open to the public, with the exception of special sessions. 
   - TAC membership is limited to seven (7) seats, with alternating elections every year. Contributors to Technical Initiatves may run, and each contributor may vote once in TAC elections. 
-- **Technical Initiatives** are projects, working groups (WG), or services governed by their own Charters. Charters are approved by the TAC. Once approved, changes to a Charter must be reviewed, evaluated, and accepted or rejected according to terms documented in the Charter. If accepted, changes to a Charter are then sent for approval or disapproval by the TAC.
-   - All Technical Initiatives are persistent open groups focused on a technical objective, with transparent proceedings that are open to the public, and vary in their objectives.
-- A **Project** is a Technical Initiative focused on the creation and ongoing support of resulting Technical Deliverables. Projects usually manage one or more GitHub repos of their own, may have separate meetings, etc.  **(what is the etc?)**
-   - A **Technical Deliverable** is an open source licensed software (source code) and its supporting artifacts (technical documentation, etc.) produced from a project. 
-- A **Working Group** (WG) is a group (or team) based Technical Initiative formed to support the overall mission of the OpenSSF. WGs generally do not produce open source software as a primary artifact. WGs often include some open source code, or use licensed software, in fulfillment of their Charter. WGs can be formed to perform tasks Temporary or Ongoing in scope.
-  - **Temporary** scope -- The WGs charter may specify that the WG will wrap up after a specific event, such as a publication.
-  - **Ongoing** scope -- The WGs charter may specify that an effort is expected to be ongoing in support of open source security indefinitely.
-- A **Service** is a Technical Initiative in which software is either built or acquired to support or automate OSSF transactions
-
+- **Technical Initiatives** are groups formed in support of the overall mission of the OpenSSF. Technical Initiatives include Working Groups (WG), Special Interest Groups (SIG), Projects, and services governed by their own Charters with various objectives, reporting relationships, and funding models described below.
+   - All Technical Initiatives are open groups focused on a technical objective, with transparent proceedings that are open to the public, and vary in their objectives.
+   - Technical Initiatives usually manage one or more GitHub repos of their own, may have separate meetings.
+- A **Project** is a Technical Initiative focused on the development and ongoing support of open source licensed software (source code) and its supporting artifacts (technical documentation, etc.).
+- A **Working Group** (WG) focuses on developing other types of deliverables than software such as guides, specifications, and educational material, or conducting initiatives such as an education outreach. While a WG does not produce open source software as a primary artifact it may launch Projects that do so. A WG may also launch Special Interest Groups (SIG) to perform specific tasks. WGs often include some open source code, or use licensed software, in fulfilment of their Charter.
+- **Special Interest Groups** (SIG) are under the direct governance of their reporting WGs and are bound to achieving a very specific goal. 
+- A **Technical Deliverable** can be an open source licensed software and its supporting artifacts, a specification, a technical guide. This is a technical artefact produced by a Technical Initiative.
+- A **Service** is a Technical Initiative in which software is either built or acquired to support or automate OSSF transactions.
+
+The following table describes the main types of groups and their characteristics.
+
+| Initiative | Expected lifespan | Primary output| Reporting relationship |	Economic model
+|------------|-------------------|---------------|------------------------|---------------
+| Working Group (WG) | unbounded | not software | to the TAC | normative
+| WG w/ SIF | unbounded | not software | to the TAC | special fund
+| Project |	unbounded | software | either TAC or WG | normative
+| Project w/ SIF | unbounded | software | to the TAC | special fund
+| Special Interest Group (WG) | bounded | not software | to a WG | normative
+
+SIF = Specific Initiative Fund
 
 ### TODO
 

diff --git a/process/README.md b/process/README.md
@@ -1,11 +1,11 @@
 
 # I. Overview
 
-This document describes the Open Source Security Foundation (OpenSSF) life cycle process for Technical Initiatives, both Working Groups and Projects.
+This document describes the Open Source Security Foundation (OpenSSF) life cycle process for Technical Initiatives, both Working Groups, Projects, and Special Interest Groups (SIG).
 
 The authority that governs this process is as follows:
 
-The parent organizational structure grants governance to the downward in the organizational structure.  In turn the receiving Working Group or Project report health, participation, outcomes, statuses, etc up the chain.
+The parent organizational structure grants governance to the downward in the organizational structure.  In turn the receiving Working Group, Project, or SIG reports health, participation, outcomes, statuses, etc up the chain.
 
 ```mermaid
 flowchart TD
@@ -16,7 +16,7 @@ flowchart TD
     B <--> F[Project]
     B <--> G[Project]
     E <--> H[Project]
-    E <--> I[Project]
+    E <--> I[SIG]
 ```
 
 The process is designed to be flexible to enable a Project to move in and out of a Working Group as deemed appropriate by the TAC.
@@ -27,4 +27,4 @@ Working Groups and Projects have a different lifecycle as defined below:
 
 * [Working Group Life Cycle](working-group-lifecycle.md)
 * [Project Life Cycle](project-lifecycle.md)
-
+* [Special Interest Group Life Cycle](sig-lifecycle.md)