SOURCES SOUGHT
D -- Smart Card Technology
- Notice Date
- 7/26/2005
- Notice Type
- Sources Sought
- NAICS
- 519190
— All Other Information Services
- Contracting Office
- General Services Administration, Office of the Chief Acquisition Officer (V), GSA Headquarters Contracting Division (VC), 18th & F Streets, NW Room 4020, Washington, DC, 20405
- ZIP Code
- 20405
- Solicitation Number
- GS00V05PDC0040
- Response Due
- 8/9/2005
- Archive Date
- 8/24/2005
- Description
- REQUEST FOR INFORMATION INFORMATION TECHNOLOGY SERVICES Smart Card Technology Description: The government is seeking information concerning the availability of FIPS-201-compliant 128K smart card products and supporting components. Background: On August 27, 2004, Homeland Security Presidential Directive (HSPD) 12: Policy for a Common Identification Standard for Federal Employees and Contractors was signed. As a result of this Directive, the National Institute of Standards and Technology issued Federal Information Processing Standard (FIPS) 201: Personal Identity Verification for Federal Employees and Contractors, which provides the requirements for a uniform identity credential for access to Federal facilities and systems as designated by HSPD-12. The Standard is supported by Special Publication (SP) 800-73: Interfaces for Personal Identity Verification, SP 800-78: Cryptographic Algorithms and Key Sizes for Personal Identity Verification, and draft SP 800-76: Biometric Data Specification for Personal Identity Verification. A number of Federal agencies plan to add additional data beyond the mandatory elements in the card (e.g. additional PKI certificates), which will cause them to immediately approach the full capacity of standard 64k smart cards. The government is interested in learning more about potential near-term solutions with larger data storage capacity, and therefore seeks answers to the following questions: 1. How soon could a 128K dual interface Smart Card that complies with technical requirements of FIPS-201 and SP 800-73 be developed, tested, manufactured and made available to government acquisition officers? 2. When will they be available in sufficient quantities to meet government needs (approximately 150,000 cards per month over a period of two to three years)? 3. Will this 128K dual interface Smart Card incorporate Global Platform and be certified as Version 2.2? 4. How will the move to 128K Smart Cards impact current implementations using 64K Smart Cards (middleware, software, readers etc)? 5. Will the cards have the ability to generate 2048bit RSA /224 bit Elliptic Curve key algorithms? 6. Will the cards have the ability to perform functions using Advanced Encryption Standard (AES) algorithms? 7. What performance implications are there for 128K smart cards? 8. What are the projected relative costs for FIPS-compliant 128K smart cards versus 64K smart cards? 9. What other considerations should the government be aware of when moving to 128K Smart Card products? Concerns about the implementation of biometrics are central in the government?s interest in the higher capacity smart card. In order to better understand the state of industry thinking on the subject of biometrics, the government also seeks answers to the following questions concerning the implementation of biometrics on smart cards: 10. In the event the government elects to use biometric fingerprint image, what products are available to meet the IMAGE transfer and use today that could be evaluated for both the desktop and in conjunction with physical security door readers and as handheld devices? 11. What are the performance parameters for these IMAGE processing devices? 12. In the case of fingerprint minutiae, what minutiae templates and algorithms do you support? To which national or international standards do they conform? 13. One suggestion is that the government might incorporate both IMAGE and MINUTIAE fingerprint biometric capabilities into its smart cards. How does the need to support multiple biometric technologies impact the cost of readers and other ancillary devices and software? 14. What are the cost differentials between readers capable of processing IMAGE fingerprint biometrics versus MINUTAIE fingerprint biometrics? 15. What are the performance differentials between devices that support IMAGE versus MINUTIAE biometrics? 16. What other considerations should the government take into account when making a determination to adopt either IMAGE or MINUTAIE fingerprint biometrics? References: Personal Identity Verification for Federal Employees and Contractors (FIPS-201) <<http://csrc.nist.gov/publications/fips/fips201/FIPS-201- 022505.pdf>> Security requirements for Cryptographic Modules (FIPS 140-2) << http://csrc.nist.gov/publications/fips/fips140-2/fips1402.pdf>> Interfaces for Personal Identity Verification (SP 800-73) << http://csrc.nist.gov/publications/nistpubs/800-73/SP800-73- Final.pdf>> Cryptographic Algorithms and Key Sizes for Personal Identity Verification (SP 800-78) << http://csrc.nist.gov/publications/nistpubs/800- 78/sp800-78-final.pdf>> Government Smart Card Interoperability Specification v. 2.1 (NISTIR 6887) <<http://csrc.nist.gov/publications/nistir/nistir-6887.pdf>> INSTRUCTIONS TO PROSPECTIVE OFFERORS Offerors? responses to the RFI shall be submitted to by 3:00 pm EDT, August 09, 2005. Please submit responses using Microsoft Word or PDF attachment to the following individuals: Kisha Emmanuel Contracting Officer General Service Administration Office of the Chief Acquisition Officer Email:kisha.emmanuel@gsa.gov Von Harrison Program Office General Service Administration Email:von.harrison@gsa.gov Questions regarding this RFI shall be e-mailed to the above points of contact. NO QUESTIONS WILL BE ACCEPTED BY TELEPHONE. RFI responses shall conform to the format below and provide the following information: 1. Cover Letter ? The cover letter must include the following information: Company name Company point of contact, telephone number and email address Date submitted 2. Offerors shall respond to each of the general questions. 3. If you choose not to respond to a question, indicate ?no response.? 4. Submissions shall be in sufficient detail and clarity to provide the information needed to assess your solution. 5. Marketing and/or reference materials, if included, shall be placed at the end of the response, in an appendix. 6. Responses shall not exceed 20 pages All questions shall be submitted in writing via email to the Contracting Officer, Kisha Emmanuel, at kisha.emmanuel@gsa.gov, no later than August 1, 2005, EDT, 1:00 pm. No questions will be accepted by telephone. The Government reserves the right to edit any questions as needed to protect the identity of the source, but absent this consideration, the Government intends to quote each submitted question verbatim in its response. The Government has targeted, but cannot guarantee a consolidated response to all vendors on or about August, 4, 2005. DISCLAIMER (1) All information submitted in response to this request will be subject to public release. Therefore, do not include proprietary or confidential business information in your response. Vendors responding to this notice assume the risk of public disclosure if confidential information is included. (2) This notice is for informational purposes only and does not constitute a solicitation or Request for Proposal. This notice is not to be construed as a commitment by the Government to contract for services. Please be advised that the Government will not pay for any information provided as a result of this notice and will not recognize or reimburse any cost associated with any RFI submission.
- Place of Performance
- Address: Washington, DC.
- Zip Code: 20405
- Zip Code: 20405
- Record
- SN00855241-W 20050728/050726212919 (fbodaily.com)
- Source
-
FedBizOpps.gov Link to This Notice
(may not be valid after Archive Date)
| FSG Index | This Issue's Index | Today's FBO Daily Index Page |