SOLICITATION NOTICE
70 -- Electronic Machine Readable Travel Document Readers
- Notice Date
- 8/5/2005
- Notice Type
- Solicitation Notice
- NAICS
- 519190
— All Other Information Services
- Contracting Office
- DHS - Direct Reports, Office of the Chief Procurement Officer, Office of Procurement Operations, US-VISIT Acquisition Division, 1616 N. Fort Myer Drive Suite 1800, Arlington, VA, 22209-3110
- ZIP Code
- 22209-3110
- Solicitation Number
- RFI-05-02
- Response Due
- 9/19/2005
- Archive Date
- 10/4/2005
- Description
- US-VISIT REQUEST FOR INFORMATION/SOURCES SOUGHT Electronic Machine Readable Travel Document (e-MRTD) Readers 1.0 INTRODUCTION The United States Visitor and Immigrant Status Indicator Technology (US-VISIT) Program works with other agencies (stakeholders) such as the Customs & Border Patrol (CBP), Immigration & Customs Enforcement (ICE), Department of Transportation (DOT), Department of State, and others to enhance traveler security. This is accomplished by leveraging existing systems to retrieve an integrated view of information from a number of different sources. The information is used to establish the legal basis for entry into and exit from the U.S. The US-VISIT Program is focused on travelers that have non-immigrant Visas to enter the United States, referred to as in-scope travelers. The Program deploys identification and verification capabilities at air, sea and land Ports of Entry (POEs) that improve the integrity of the immigration system while also reducing the amount of time needed to process in-scope travelers. US-VISIT functionality has been rolled-out in releases, called Increments, which first established improvements at sensitive air and sea POEs and then extended many of the same capabilities to the busiest land POEs. The purpose of Increment 2A is to implement the requirements of the Enhanced Border Security and Visa Entry Reform Act (EBSVERA) of 2002, Public Law 107-173, 8 U.S.C 1701 et seq., alternatively called the Border Security Act (BSA) of May 14, 2002, as amended. Section 303(b) of the BSA created a series of legislative mandates that the U.S. Government is expected to accomplish by specific dates: U.S. Issued Documents: All visas and other travel and entry documents issued to aliens must be machine-readable and tamper resistant, and include biometric identifiers, by October 26, 2004 ?303(b) (1). Equipment to Authenticate U.S.-Issued Documents: DHS must install at all United States ports-of-entry (POEs) equipment and software to allow for the biometric comparison and authentication of all United States visas and other travel and entry documents issued to aliens, extension granted to October 26, 2005. ?303(b)(2)(A). Equipment to Authenticate Visa Waiver Program (VWP) Passports: DHS must install at all United States ports-of-entry (POEs) equipment and software to allow for the biometric comparison and authentication of all passports issued by Visa Waiver Program (VWP) countries, extension granted to October 26, 2005. ?303(b)(2)(A). VWP Certification: All VWP countries must certify that it has a program in place to issue to its nationals machine-readable passports incorporating biometrics pursuant to the International Civil Aviation Organization (ICAO) standards, extension granted to October 26, 2005. ?303(c)(1). US VISIT Increment 2A is primarily responsible for the establishment of the capabilities stipulated in Section 303 (b)(2)(A) of the BSA. This responsibility entails the acquisition of ?reading? equipment and software that can be interfaced with the current POE automated systems and equipment, and provides for processing of travelers to the U.S as well as U.S. citizens. 2.0 PURPOSE The Government, by means of this Request for Information (RFI)/Sources Sought (SS), seeks to identify potential suppliers of e-MRTD readers and solicit feedback on the requirements and application programming interface (API) provided in this RFI. In this context an e-MRTD reader must have the capability to read biometrically enabled e-Passports, US issued traveled documents, and legacy documents as defined in the requirements in Attachment 2. The e-MRTD reader is a key component of the integrated border inspection processes that provides the capability to read and authenticate ICAO compliant biometrically enabled e-Passports and other Machine Readable Travel Documents. The vision of the US-VISIT Program is to apply and deploy this technology in a manner that will provide enhancements to the current border inspections processes. The e-MRTD readers for US-VISIT will be deployed to a demanding environment critical to the security of the United States. Reading and authenticating electronically enabled travel documents requires the introduction of new hardware and software into the inspection process, presenting significant risk. This RFI defines capabilities that allow the application of standards to meet the US-VISIT design parameters. An example of the challenge faced is the time it takes to read necessary information from the travel document. Currently it takes 0.5 seconds to read the MRZ of a travel document. The current read time of an e-Passport without Basic Access Control (BAC) averages about 2.5 seconds. E-Passports with BAC will add additional time on to the inspection process. US-VISIT is interested in technology that will allow the reading of e-Passports with BAC as accurately and as quickly as possible Key factors in evaluating e-Passport reader technology include: The fastest possible accurate read times for all travel documents, including ones with BAC. The human factors of the reader, due to the high flow-rate environment of larger Ports of Entries (POEs) Prevention of eavesdropping and skimming. Though BAC will be used to prevent eavesdropping, it is highly desired that the reader provided is highly resistant to electronic skimming and eavesdropping Optional or upgrade capability of document authentication utilizing multiple light sources to include ultraviolet (uv) and infrared (IR). The device may also provide for advanced matching against travel document templates. The support of industry in meeting the technological challenges of e-MRTDs described in the requirements in this RFI is key to the successful processing of these new travel documents as part of US-VISIT. Relevant information gathered during the RFI/SS process will be summarized and shared with US-VISIT stakeholders. 3.0 SUBMITTAL Through on-going programs US-VISIT has developed a series of mandatory and desirable requirements for e-MRTD readers. Additionally, an application programming interface (API) has been developed to support efficient integration into the US-VISIT system. These technical requirements are detailed in the Attachments and should be used to prepare your response to this RFI/SS. These requirements are subject to revision prior to the subsequent release of a formal Request for Proposal. It is requested that potential vendors supply feedback (both positive and negative) and questions on both the requirements and the API. Vendors should use the following outline to guide their response. (Please use the same numbering order and headings within your response to this RFI.) 1. Brief overview of your company and organization. 2. Understanding of the US-VISIT e-MRTD RFI ? the vendor should state their understanding of what US-VISIT is asking for in this RFI. 3. . Requirements Questions and Comments ? the vendor should submit any questions or concerns regarding the requirements in Attachment 2. This should include any questions regarding the clarity of the requirements, the categorization of mandatory versus desirable, ability of the vendor to meet the requirements, and any other questions the vendor may have. 4. Application Programming Interface (API) Questions and Comments ? ? the vendor should submit any questions or concerns regarding the API in Attachment 1. This should include any questions regarding the clarity of the API, ability of the vendor to meet the requirements of the API, and any other questions the vendor may have. 5. Technical solution(s) for document reader technology. Briefly describe how your product meets, or how it could be modified or adapted to meet, all requirements listed in the Attachments. The vendor may provide additional information, as deemed appropriate, however, the submission must meet the guidelines for page count described below. A succinctly written submission is required for all responses. The submittal should not exceed 10 pages using 12-point Times New Roman type. 4.0 METHOD OF SUBMISSION The summary paper should be submitted both in hardcopy (4 copies) and in electronic form. Electronic copies should be submitted in Microsoft Office 2000 format. Supporting information, e.g. brochures must be submitted in a binder that holds all such material together for each technology submitted by a respondent and also in electronic form; CD-ROM is the preferred medium for electronic submission. The government may, at its sole discretion and at no cost to the government, copy all or parts of your submission for the purpose of evaluating, summarizing, or compiling information. Stakeholders in the RFI process will share information. The government will use usual and customary means to safeguard proprietary information, but only when such information is (1) clearly marked as proprietary, and (2) is, in fact, information that could not have been obtained from another party or source. 4.1 Submission Due Date Response to the RFI/SS must be provided within thirty (30) business days of its publication to Mr. Robert Richards, Contracting Officer, 1616 North Fort Myer Drive, 17th Floor, Arlington, VA 22209, (202) 298-5122 or robert.richards@dhs.gov. 4.2 Next Steps US-VISIT intends to hold an Industry Briefing, prior to receipt of responses from this RFI/SS, on September 1, 2005 at 1:00 P.M. in Room 1890, 1616 North Ft Myer Drive, Arlington, VA. Please communicate your company?s intentions to attend to Ms. Ruth Schellert, 202-298-5057, not later than 5:00 p.m. (Eastern Standard Time), August 18, 2005. Space is at a premium and the number of participants per company is limited to two (2). 5.0 ACQUISITION POTENTIAL US-VISIT plans to issue a solicitation as early as the 4th quarter of fiscal year 2005. The proposed contract will be an Indefinite Delivery, Indefinite Quantity (IDIQ) contract with a base year and four (4) one year options. Sources identified through this RFI/SS process will be solicited, as well as others. Deliverables would likely include delivery of equipment, labor and materials for installation and integration with existing systems, and operations and maintenance services. US-VISIT will require that equipment performance be demonstrated and proven through actual tests as a part of the source selection process. The estimated value of this acquisition is $5 - 50M (base and option periods). 6.0 OTHER INFORMATION Interested parties are advised that US-VISIT and DHS OPO are under no obligation to take any further action with any party as a result of this RFI/SS. Summary reports supplied in response to the RFI/SS will be made available to all US-VISIT stakeholders. Accompanying information and descriptive literature may also be made available to US-VISIT stakeholders. With the exception of the summary sheets, any other information that interested parties do not want disclosed to all US-VISIT stakeholders should be identified as such. Information that interested parties do not want disclosed will be retained exclusively for the use of US-VISIT and DHS OPO. Request for copies of ICAO standards documents (ICAO Document 9303, Parts 1 to 3) should be directed to sales_unit@icao.org 7.0 ATTACHMENTS Attachment 1 -US-VISIT API Attachment 2 -US-VISIT ePassport Requirements Attachment 3 - References US-VISIT REFERENCES Technical Report, Biometrics Deployment Of Machine Readable Travel Documents, ICAO TAG MRTD/NTWG, Version 2.0, May 21, 2004, (Including Annexes A Through L) (Biometrics TR) o Technical Report, Development Of A Logical Data Structure - LDS For Optional Capacity Expansion Technologies, Revision ?1.7, May 18, 2004 (LDS TR) o Technical Report, PKI For Machine Readable Travel Documents Offering ICC Read-Only Access, Version - 1.1, October 01, 2004 (PKI TR) o Supplement 9303, Version: 2005-4 V3.0, June 12, 2005 o Guide To Interfacing e-MRTDs And Inspection Systems, Version 1.0, February 14, 2005 (e-MRTD Guide) o ISO/IEC 14443-1 Identification cards, Parts 1-4 The above documents reference numerous standards issued by IEC/ISO (International Electrotechnical Commission/ International Organization for Standardization), NIST FIPS (Federal Information Processing Standards), and Internet RFCs/standards (Request for Comments). The ISO 14443 references (Parts 1-4) are: ISO/IEC 14443-1 Identification cards - Contactless integrated circuit(s) cards - Proximity cards ? Part 1: Physical Characteristics ISO/IEC 14443-2 Identification cards - Contactless integrated circuit(s) cards - Proximity cards ? Part 2: Radio frequency power and signal interface ISO/IEC 14443-3 Identification cards - Contactless integrated circuit(s) cards - Proximity cards ? Part 3: Initialization and anti-collision ISO/IEC 14443-4 Identification cards - Contactless integrated circuit(s) cards - Proximity cards ? Part 4: Transmission protocol MANDATORY REQUIREMENTS (#1-35) 1. The reader shall be capable of detecting and reading both ISO 14443 Type A and Type B contactless chips in any ICAO-compliant e-Passport. (Biometrics TR, Annex I) 2. The reader shall support the ISO 7816-4 commands SELECT, READ BINARY, GET CHALLENGE, MUTUAL AUTHENTICATE. (LDS TR) 3. The reader shall be capable of reading Data Group (DG) 1, DG 2, and EF.COM, EF.SOD (to include the Document Signer Certificate) from the ICAO standard LDS v. 1.7. (LDS TR) 4. The reader shall be capable of reading the content of DG 2 in JPEG and JPEG 2000 format. (Biometrics TR) 5. The reader shall be capable of reading ISO 14443 contactless chips with a minimum of 32 Kilobytes and up to 512 Kilobytes of data.(Biometrics TR) 6. The reader shall support data transfer rates of 106 and 424 kilobits per second (kbps). (Annex K, K.10 ) 7. The reader shall operate within the operating magnetic field strength between 4-7.5 A/m. (Note: ISO 14443-2 specifies 1.5-7.5 A/m, but 1.5 A/m has been observed to be too low for some chips. Annex K, K.03). 8. The reader shall support anti-collision processes specified in ISO 14443-3. (Annex K, K.07) 9. The reader shall be designed so that an e-Passport will be read with a single placement of the e-Passport on the reader. 10. The reader shall be capable of reading ISO 14443 contactless chips regardless of chip location or orientation to the data page in e-passports. (Biometrics TR) 11. The reader?s antenna (e) shall not interfere electromagnetically with other electronic devices within one (1) foot or thirty (30) centimeters. 12. The reader shall be FCC certified and comply with FCC standards for radiation emission limits. 13. The reader shall support upgrading and managing of the software/firmware in the unit. 14. The reader shall have USB 2.0 connectivity to the host PC. (Annex K, K.09) 15. The reader shall support the BAC authentication and key establishment protocol. (PKI TR) 16. The reader shall support Secure Messaging for Basic Access Control (BAC). (PKI TR) 17. The reader shall be capable of accepting a Document Basic Access key derived from an external source (e.g., a key derived from the corrected MRZ when an MRZ misread has occurred). 18. The reader shall be capable of reading an opened e-Passport when it is placed on the reader, irrespective of any shielding mechanism used for the e-Passport. (MRTD Guide) 19. The reader shall implement the following FIPS 180-2 hashing algorithms specified in the ICAO NTWG PKI TR: SHA-1, SHA-256. (PKI TR) 20. The reader firmware shall purge all cached data read from the e-Passport after a transaction has completed. 21. The reader shall read and transmit the OCR-B MRZ data (from current MRTDs and e-passports) within two seconds. 22. The reader shall read both new e-Passports and existing MRTDs. 23. The reader shall be capable of accepting ISO 7810 ID-1, ID-2, or ID-3 size documents, as defined in ICAO Document 9303. 24. The reader shall come with the device drivers, libraries, source sample code, and documentation. 25. The drivers shall run in Microsoft Windows 2000 and Windows XP environments. 26. The reader shall provide a program that will install the drivers and supporting DLLs. 27. A halted read operation shall leave the reader in a state to accept additional read requests. 28. The reader shall have a method to retrieve data blocks larger than 32 Kilobytes. 29. The supplied APIs shall conform to US-VISIT API Standards. 30. The reader shall be an integrated device capable of reading both the OCR-B MRZ and the contactless IC chip. 31. The reader shall not require reconfiguration of firmware or other modifications to read any ICAO-compliant e-Passport chip. 32. The reader shall be no larger than the following dimensions: Length 12", Width 8", Height 9". 33. Placement of the e-Passport on the reader shall initiate chip read without manual intervention. 34. The reader shall be UL certified. 35. At the request of the reader solution, the reader shall free or initialize all reader resources so that the reader shall be sharable across multiple applications that are running simultaneously. DESIRABLE REQUIREMENTS (#36-66) 36. The reader should be capable of reading ISO 14443 contactless chips with 1 Megabyte of data. 37. The reader should support a data transfer rate of 848 kbps. (Annex K, K.10 ) 38. The reader should be capable of reading both new and well-worn travel documents without requiring the user to hold in place or put additional pressure onto the travel document. Examples of well-worn travel documents include those that are washed, have curled edges, are stained, etc. 39. The reader should be designed to enable the operator to place an open travel document in the reader without having to hold the travel document in place. 40. The reader should provide visible indication of power and status (e.g. off-line; ready, processing). (Annex K, K.11) 41. The vendor should describe how software/firmware is upgraded and managed. 42. The reader should be upgradeable to support cryptographic algorithms for Extended Access Control. 43. The reader should implement the following FIPS 180-2 permitted hashing algorithms, as specified in the ICAO NTWG PKI TR: SHA-224, SHA-384, and SHA-512. 44. The reader should be designed to inhibit eavesdropping of communications between the reader and the e-Passport from a distance greater than one (1) meter (39 inches) from the reader. (MRTD Guide) 45. The reader should support the ISO 7816-4 commands INTERNAL AUTHENTICATE and EXTERNAL AUTHENTICATE. (PKI TR). 46. The reader should inhibit jamming of reader operations from a distance of >= 30 cm from the reader. (MRTD Guide) 47. The scanner should provide resolution of at least 300 dpi. 48. The reader should read and transmit the OCR-B MRZ data (from current MRTDs and e-passports) within one second. 49. The reader should be capable of accepting oversize MRTDs (page size 5.5? x 3.5? or 9 x 14 cm.) 50. During the execution of the installation program provided, a key should be added to the registry at ?HKEY_LOCAL_MACHINE\SOFTWARE\US-VISIT\READERS?. The key name should uniquely identify the reader. It will typically be the reader company name and produc 51. The reader should include, as part of its installation program, an ?uninstall? feature. Performing ?uninstall? should remove all reader specific drivers and support libraries. The uninstall should remove all reader specific drivers, support libraries, a 52. The reader should be capable of reading Data Groups (DG) 3-16. 53. The reader should conform to the (Draft) PC/SC Specification Version 2.0 standard for contactless chips. 54. The reader should be capable of selecting and transmitting individual data groups from the ISO 14443 contactless chip on request without waiting until all data groups have been read (user-selected non-sequential data retrieval.) (Annex K, K.14) 55. The reader should be capable of reading ISO 14443 contactless chips at a distance of 0 ? 0.79 inch (2 cm) from the reader. (Annex K, K.13) 56. For open access chips, the time required for the reader to: poll for presence of an e-Passport chip, initialize and activate the chip, retrieve data, and recycle should be <= 10 seconds. (Annex K, K.02) Recycle includes recognizing that a connection wit 57. The installation process for software upgrades should be silent, i.e. will run in a batch mode that does not require manual intervention, to support installation to all devices from a central location. 58. The reader should close the connection to the reader solution and free all resources within .5 seconds. 59. The reader's OCR software should read the serial number from the I-94 Form, which is written in the Farrington 7B font. 60. The installation of the reader drivers and firmware should not require specific versions of the installation program or configuration files for each specific reader. 61. The Mean Time Between Failures (MTBF) rate should be >= 20,000 hours. 62. For the maintenance of replaceable or serviceable parts, the vendor should provide documentation regarding Level 1 maintenance, e.g. bulb replacement, reader cleaning. 63. For the maintenance of replaceable or serviceable parts, the vendor should provide documentation regarding Level 2 maintenance, e.g. maintenance that requires minimal training. 64. For the maintenance of replaceable or serviceable parts, the vendor should provide documentation regarding Level 3 maintenance, e.g. maintenance that requires the reader be returned to the warehouse. 65. Power for the reader should be supplied with an AC power adapter with power input requirements no greater than 5 amps. 66. The reader should be designed so that an MRTD will always be physically presented to the correct spot to read the MRTD. (Annex K, K.08 )
- Place of Performance
- Address: United States Wide
- Country: United States
- Country: United States
- Record
- SN00863036-W 20050807/050805211527 (fbodaily.com)
- Source
-
FedBizOpps.gov Link to This Notice
(may not be valid after Archive Date)
| FSG Index | This Issue's Index | Today's FBO Daily Index Page |