Loren Data's SAM Daily™

 fbodaily.com
Home Today's SAM Search Archives Numbered Notes CBD Archives Subscribe
FBO DAILY ISSUE OF JULY 15, 2012 FBO #3886
SOURCES SOUGHT

D -- Homeland Security Presidential Directive (HSPD) 12 Implementation to Support Physical Access Control Systems and Related HSPD-12 Technology Requirements

Notice Date
7/13/2012
 
Notice Type
Sources Sought
 
NAICS
541512 — Computer Systems Design Services
 
Contracting Office
Office of the Chief Procurement Officer, Washington, District of Columbia, 20528, United States
 
ZIP Code
20528
 
Solicitation Number
RFI-HSPD-12-0001
 
Archive Date
8/18/2012
 
Point of Contact
Elizabeth Walsh, Phone: (202) 447-0197, Paula Nusbaum, Phone: (202) 447-0907
 
E-Mail Address
Elizabeth.Walsh@hq.dhs.gov, Paula.Nusbaum@hq.dhs.gov
(Elizabeth.Walsh@hq.dhs.gov, Paula.Nusbaum@hq.dhs.gov)
 
Small Business Set-Aside
N/A
 
Description
Request for Information RFI-HSPD-12-0001 Continued Implementation of the Homeland Security Presidential Directive (HSPD) 12 to Support Physical Access Control Systems and related HSPD-12 Technologies Requirements SOURCES SOUGHT NOTICE & REQUEST FOR INFORMATION. THIS IS A REQUEST FOR INFORMATION (RFI) ONLY. This RFI is for planning purposes only and shall not be construed as an obligation on the part of the Government. This is NOT a Request for Quotations or Proposals. No solicitation document exists, and a formal solicitation may or may not be issued by the Government as a result of the responses received to this RFI. The Government will not pay for any response or demonstration expenses. Any information received will become the property of the Government and will not be returned to the submitter. The Office of the Chief Security Officer (OCSO) of the Department of Homeland Security (DHS), Management Directorate (MGMT) is issuing this RFI for an electronic Physical Access Control System (PACS) solution, to include utilization of Personal Identity Verification (PIV) card and PIV Interoperable (PIV-I) card for Physical Access Control, Access Provisioning and Deprovisioning, and Biometric Technologies to meet requirements for ensuring the security of DHS assets and safeguarding DHS information technology environments. BACKGROUND In support of the ongoing effort by DHS to meet the requirements of Homeland Security Presidential Directive 12 (HSPD-12), Office of Memorandum and Budget Memorandum 11-11 (OMB M-11-11), and the Federal Identity, Credential and Access Management (FICAM) Roadmap, DHS is looking for an electronic PACS solution that applies innovative technical approaches for: • PIV Card Usage for Physical Access Control; • PIV-I and PIV-Compatible (PIV-C) Usage for Physical Access Control; • Ability to integrate distributed PACS across facilities and DHS Enterprise; • Interoperability within the Departments and with external Stakeholders; • Access Management to include but not limited to access provisioning, deprovisioning; • Standardization, federation and interoperability; • Biometric Collection (fingerprint, facial images, iris, voice, etc.) and implementation, biometric image/sample quality analysis, transmission to the DHS authoritative fingerprint biometric database, receipt, and match results; and • Satisfaction of Federal Information Processing Standard (FIPS) 201, National Institute of Standards and Technology (NIST) 800-116 and FICAM functional criteria. To provide a baseline for these efforts, DHS is gathering information on new product innovations and capabilities available in current, existing state-of-the-art commercial and government products in the areas listed above. The intent is to procure an integrated PACS and related solutions that support DHS and its Components. For DHS to acquire a fully integrated PACS solution, it must be mobile, upgradeable/scalable, flexible, customizable, and field tested. This RFI requests industry to provide information on approaches, best practices, and technologies for accomplishing integrated and compliant physical access controls, achieving operational intelligence and Identity, Credential and Access Management (ICAM)/Logical Access Control Systems (LACS) convergence, and enabling interoperability within DHS and with its trusted partners. REQUIREMENTS DHS OCSO has the following requirements for the envisioned enterprise end-to-end solution and/or technologies. (1) Provide the concept of operations, functionality, and basic components for an integrated PACS solution that delivers the following functionality: single and multi factor electronic identification and access, Internet Protocol (IP) video monitoring, intrusion detection, alarm management, security monitoring systems, electronic locks, etc. The solution shall support all FIPS and 800-116 authentication methods (e.g. visual, CHUID, CAK, PAK, biometric and mixed mode). (2) Provide a solution that supports convergence of Physical and Logical Access Control Systems across an enterprise to improve access management and audit ability. (3) Support multiple authentication modes for controlling access with capabilities to adjust authentication and access, and trigger facility security countermeasures (e.g. cameras, lighting, intrusion detection system). (4) Provide visitor and access management capabilities for DHS employees and contractors as well as external trusted partners; this functionality should be capable of integrating both in technology and process (e.g. interfaces and workflows) with DHS background investigation, security management and visitor access processing. (5) Have the ability to support PIV-I, PIV-C, Transportation Worker Identification Card (TWIC), First Responder Authentication Card (FRAC), and Department of Defense (DoD) Common Access Card (CAC). (6) Approaches for integrating with legacy and distributed PACS infrastructures and strategies to achieve integrated, interconnected and secure access. (7) Provide capabilities for IP based connectivity for all relevant infrastructure components (e.g. reader, panels, head end), hierarchical/ delegated management and administration, and support web and SaaS (e.g., Software as a Service). (8) Provide a flexible and scalable administration and management model that supports entry point, facility, component, and enterprise management for PACS across the Enterprise; this capability must support LACS convergence as well as separation of roles via attributes, role, facility, and DHS Component. (9) Perform full path, attribute and access validation of the individual, their credential and access privileges. (10) Integration with existing DHS infrastructure authoritative data sources for provisioning, authentication, authorization, audit, personnel security and access management. This includes but is not limited to: a. DHS Identity Management System/Card Management System (IDMS/CMS) b. DHS Public-key Infrastructure (PKI) c. DHS Integrated Security Management System (ISMS) d. Human Capital e. Active Directory f. Component data stores g. Automated Biometric Identification System (IDENT) (11) Provide innovative approaches and technologies to include, but not limited to: a. Biometric multi-modal authentication b. Modular/portable integrated access solution c. Alternate authentication approaches (e.g. PDA) d. Integration layer components and methodologies e. Data connectors and translation services (e.g. BAE, AAES, Identity Hub) f. Automated workflows integrating ICAM with PACS, layered authentication models, attribution and digital/electronic signatures. g. Multiple enclave support (e.g. security level, communities of interest/tenants) (12) Integration of PACS with facility, security, and monitoring systems including but not limited to: a. Cameras b. Intrusion Detection System (IDS) c. Fire suppression and water control systems d. Gate and Door Control e. Lighting f. Power RESPONSE In response to this RFI, interested parties should provide a written Statement of Capability in conjunction with a demo-ready product that addresses items 1-7, below. Vendors are encouraged to provide alternate approaches and technologies to differentiate their responses, where applicable. (1) Describe an approach to modernize or integrate existing distributed PACS or implement new solutions that integrate with the Department's existing processes, data stores and systems (e.g. DHS IDMS and CMS, validation services, personnel data stores, active directory, personnel vetting, and visitor management) (2) Describe the capability of the integrated, end-to-end solution to show all the requirements outlined above. (3) Describe an approach for consolidating all physical security access control systems into one physical access control environment to include but not limited to technologies used for physical security: electronic access, IP video surveillance, alarm management, security monitoring systems, electronic locks, etc. This approach should delineate integration options such as single PACS and integrated multi-vendor PACS, as well as convergence with ICAM/LACS. (4) A general explanation of how the physical and logical access control system or technologies meets the technical requirements outlined above. (5) Explain the commercial software licensing approach, if applicable, that minimizes license management costs and leverages commercial off-the-shelf (COTS) products availability under DHS enterprise license vehicles. (6) A general explanation of applicable products and services that are on the GSA FIPS-201 Approved Products List (APL) and are in compliance with the current version of the Standard and its supporting Publications. (7) A Rough Order of Magnitude (ROM) cost estimate for implementing an enterprise end-to-end solution per year for five years. The page limit for the response is ten (10) pages. Responses should also include the company profile inclusive of the following information: • Company Name • Street Address • City, State, Zip Code • Contractor Point of Contact • Phone Number • Data Universal Numbering System (DUNS) Number • History • Business Size • Socioeconomic Category • North American Industry Classification System (NAICS) Code • Primary Line of Business Your response must be directed to the points of contact identified herein. Response due date: no later than 5:00 p.m. Eastern Time on August 03, 2012.
 
Web Link
FBO.gov Permalink
(https://www.fbo.gov/spg/DHS/OCPO/DHS-OCPO/RFI-HSPD-12-0001/listing.html)
 
Record
SN02802706-W 20120715/120713235439-74b061cd4a23252d88f66ced861eee0b (fbodaily.com)
 
Source
FedBizOpps Link to This Notice
(may not be valid after Archive Date)
FSG Index  |  This Issue's Index  |  Today's FBO Daily Index Page |
ECGrid: EDI VAN Interconnect ECGridOS: EDI Web Services Interconnect API Government Data Publications CBDDisk Subscribers
 Privacy Policy  Jenny in Wanderland!  © 1994-2024, Loren Data Corp.