SOURCES SOUGHT
70 -- Removable Media Encryption Software to Meet Desktop & Laptop Infrastructure Needs
- Notice Date
- 10/2/2006
- Notice Type
- Sources Sought
- NAICS
- 541513
— Computer Facilities Management Services
- Contracting Office
- Social Security Administration, Office of Budget, Finance, and Management, Office of Acquisition and Grants, 1st Floor, Rear Entrance 7111 Security Blvd., Baltimore, MD, 21244
- ZIP Code
- 21244
- Solicitation Number
- JS100206
- Response Due
- 10/6/2006
- Archive Date
- 10/21/2006
- Description
- The Social Security Administration (SSA) is seeking vendors who can provide a Commercial-Off-The-Shelf (COTS) solution for removable media encryption software, initial training for administrators and help desk personnel, on-site implementation support, training, and maintenance. The following specifications are mandatory requirements: -Software shall have the ability to encrypt removable media such as Jump/Flash drives, USB connected media storage, external hard drives and music players. -Software shall have the ability to encrypt optical media such as CD?s, DVD?s and floppy drives. -Software shall support multiple encryption methods such as, but not limited to, AES 128 and 256, blowfish and 3DES. Software must allow for expansion to future algorithms and changing technology. -Software shall allow for multiple authentication methods such as Tokens, Certificates, Passwords, Corporate or ?Universal? Passwords, and Single Sign On. -Software shall include its own policy to dictate encryption of removable media and methods of decrypting. Software must be able to incorporate Active Directory group policy while securing the removable media. -Software shall have a built in policy to mandate files be encrypted before copying them to removable media. -Software and policy shall have the ability to be transparent to end users. End user interface, (if needed) must be well documented, and easy to train others. -Software shall have encryption on demand and support drag and drop to removable media. -Software shall have ability to transport encrypted data on removable media that can be decrypted by other parties without having the software installed, i.e. ?Standalone Mode?. -Encrypted software shall never decrypt the data on the removable media, and must have a self extracting executable to help users decrypt the data to their target machines. -Software shall be Government recommended and approved (FIPS 140-1 and FIPS 140-2 certified). -Software shall be able to encrypt local files and folders on desktops and laptops. -Software shall support strong password creation as recommend by NIST. Software shall have the ability to recover lost or forgotten passwords. -Certificate keys and or recovery files shall be handled internally by SSA, and not the outside vendor. -Software shall be able to be, ?centrally? managed by administrators with the ability to remotely assist users with lost or forgotten passwords. -Software shall support an administrator or ?Super Password? for password recovery of lost or forgotten user passwords. -Software shall not have any other recovery methods, ?Back Doors? if admin password/key is lost. -Software shall have a feature to lockout data on removable media after a given number of attempts. -Software shall be compatible with Microsoft Windows XP and future Microsoft OS releases, i.e. Vista. -Software shall be compatible with COTS products already used in the Agency's encryption effort: Etrust Antivirus for scanning and monitoring encrypted data on local drives and removable media Nero for burning encrypted data on CD?s and DVD?s -Software shall be able to be packaged in a self installer, to be distributed via Microsoft?s Systems Management Server (SMS) or Radia. -Software shall allow encrypted data, (files) to be updated by SMS or Radia. -Patches or updates to the software shall be able to be done real time with out downtime, and centrally deployable. -The software shall be certified 508 Compliant. -The software shall be Internet Protocol version 6 (IPv6) compliant. Vendors that believe they can offer a technically compliant product should submit information concerning their product?s capabilities. Detailed responses to each of the above requirements (with substantiating documentation) are required. SSA will not consider simple marketing information or incomplete responses. Reference to vendor web sites will not be considered as a valid response. Respondents should indicate whether their software is available on GSA Federal Supply Schedules or any other Government-wide Agency Contract (GWAC). Vendor?s responses shall be submitted electronically only and be received by Friday, October 6, 2006. SSA will not accept faxed information. The size limitation for email attachments is 10 megabytes. MS Word is the Agency?s standard word processing software. NO FORMAL SOLICITATION IS BEING ISSUED AT THIS TIME, and the Government does not intend to pay for the information submitted. This information will be used in SSA?s assessment of capable sources. Respondents will not be notified of any evaluated results from the data received. If a solicitation should result from the analysis of the responses, it is anticipated that such a solicitation will occur sometime during the fourth quarter of calendar year 2006. Any questions should be submitted via EMAIL ONLY (no phone calls please) to the Contract Specialist, Joan Smith at joan.m.smith@ssa.gov. Responses should refer to Synopsis Number JS100206.
- Place of Performance
- Address: Baltimore, Maryland
- Zip Code: 21235
- Country: UNITED STATES
- Zip Code: 21235
- Record
- SN01159892-W 20061004/061002220627 (fbodaily.com)
- Source
-
FedBizOpps Link to This Notice
(may not be valid after Archive Date)
| FSG Index | This Issue's Index | Today's FBO Daily Index Page |