Loren Data's SAM Daily™

 fbodaily.com
Home Today's SAM Search Archives Numbered Notes CBD Archives Subscribe
FBO DAILY ISSUE OF OCTOBER 24, 2012 FBO #3987
SOURCES SOUGHT

D -- E-Authentication & Identity Proofing Data Support Services - RFI - Statement of Work

Notice Date
10/22/2012
 
Notice Type
Sources Sought
 
NAICS
541511 — Custom Computer Programming Services
 
Contracting Office
Social Security Administration, Office of Budget, Finance, and Management, Office of Acquisition and Grants Western Region 8, 1961 Stout Street, Denver, Colorado, 80294, United States
 
ZIP Code
80294
 
Solicitation Number
COB-13-13008
 
Archive Date
11/21/2012
 
Point of Contact
Lisa Walker, Phone: 303-844-7344
 
E-Mail Address
lisa.walker@ssa.gov
(lisa.walker@ssa.gov)
 
Small Business Set-Aside
N/A
 
Description
Draft Statement of Work REQUEST FOR INFORMATION AND INDUSTRY COMMENT The Social Security Administration (SSA) is conducting MARKET RESEARCH to locate commercial firms that either sell commercial products or services, or are capable of developing such, that can integrate with SSA's current identity proofing (IdP) solution to verify the identity of SSA's online customers. NO FORMAL SOLICITATION IS BEING ISSUED AT THIS TIME. BACKGROUND SSA handles approximately 53 million electronic Service (eService) transactions yearly. This number will increase significantly over the next decade. To facilitate electronic business processes, SSA developed an authentication and identity proofing solution that incorporates the risk of fraudulent use of electronic processes, including improper disclosure, and provides appropriate identity proofing and authentication for online access to its public-facing Internet services. In order to sustain this system, SSA seeks continuous growth and industry feedback to ensure that this remains a competitive self-service solution for its customers. Proper security controls and more robust e-authentication routines provide reliable and accurate outcomes for citizens, businesses and other government agencies that rely upon SSA applications. SSA does not seek full integrators. SSA seeks information on service provider solutions that offer identity proofing and credentialing technology software as a service (SaaS) solutions in the areas of Identity Proofing, Risk-Based Identity proofing, and Out-of-wallet questions in support. SSA seeks information on vendors ability to provide authentication technology solutions that are compatible with its current solution providing Identity Proofing, Risk-Based Authentication, and Out-of-Wallet (OOW) Data. •For OOW data, SSA requests the following detailed information: OOW question categories, minimum and maximum number of questions available in a library, diversity of questions, success rate of OOW questions in US and US territories, and maintenance of OOW questions. •For Identity Proofing, SSA is seeking information on address verification (domestic and foreign). For domestic address, SSA seeks information on the pass rate by state and US territories as well as pass rate for military postal addresses. For foreign address verification, SSA seeks information on the ability to match foreign addresses and the success rate, if available. Additionally, SSA seeks information on foreign language options in the service provider's solution and the ability to support special characters and spaces for name, city, state, and street addresses, as well as transition support. •For risk-based authentication, SSA seeks information on software solutions that are capable of identifying fraudulent and/or stolen identities, and how often the information to detect these identities is updated. SSA is interested in highly reliable, adaptive solutions that will meet all technical and operational requirements specified below and within the draft statement of work (see attached). Any potential vendor solution must support:  Seamless Integration within the SSA identity-proofing framework utilizing secure, open standards in order to reduce the impact of solution implementation upon SSA and its customers;  Identity Proofing: the e-authentication process by which an assertion of an identity is verified;  Risk-Based Authentication: a technique that uses both contextual and historical user information, along with data supplied during an Internet transaction, to assess authenticity of a user interaction; and  Out-of-Wallet Data: refers to private data used for authentication activities, e.g., any personal information that cannot be found in a person's wallet. "Out-of-wallet" data may be drawn from public, publicly available and non-public proprietary databases. A typical out-of-wallet question may be based on information taken from a credit report, such as the name of the company that issued your home loan.  Transition Plan: refers to a seamless phase-in and phase-out plan to transition into SSA's current architecture by working with the current vendor and/or the incoming vendor to implement the new solution. In addition to the functionality integration during the transition period, SSA seeks information on the timeframes needed to transition (e.g. planning and analysis and development), level of effort, and potential costs. INSTRUCTIONS TO INTERESTED PARTIES Interested and capable parties are invited to submit information in response to this notice. All responses must include the following information in their responses:  A description of how the solution satisfies SSA's technical requirements. This description must include the factors, elements, and process used to generate a risk score in support of the Risk-Based Authentication requirements;  A description of how the solution will integrate with SSA systems, while conforming to applicable standards, transports, and protocols described within this solicitation;  A description of how the solution's performance, security, and reliability will be monitored, maintained, reported, and potentially improved to satisfy SSA requirements;  A general project plan that defines how the general levels of effort required on the vendor's part to implement the solution, the estimated duration to implement the solution, the types of key personnel required to implement and maintain the solution, and a description of the anticipated level of SSA personnel's involvement in implementing and maintaining the solution.  Any additional relevant information on quality assurance, warranties, or guarantees of performance of the solution.  A comprehensive list of Out-of-Wallet questions the vendor will employ that is sufficient to verify identity during the authentication process.  A clear description of how the vendor will provide access to information that supports authentication requirements specified within NIST Special Publication 800-63, such as address and financial information [e.g., credit card numbers, banking account numbers (checking, savings), loan information (home, car, student)]. SSA seeks evidence of a vendor's ability to deliver the broadest range of identity verification data to support the authentication of a highly diverse customer base.  A description of how the vendor's solution is commonly sold in the commercial marketplace (e.g., initial price approaches, user license based, transaction based recurring pricing, price policies for solution maintenance, hourly or engagement based services pricing). Vendors should also indicate whether their services/products are available on GSA Federal Supply Schedules or any other Government-wide Agency Contract (GWAC), and if applicable provide the relevant contract numbers.  Examples of relevant corporate and government past performance information that demonstrates the vendor's previous success in delivering solutions of similar size, scope, and complexity in the government or commercial marketplace. Vendors are invited to submit complete responses to this notice and make advisory comment on the attached draft statement of work document. Vendor submissions of simple marketing materials or brochures, incomplete responses that do not conform to the elements of this request for information, or references to vendor websites will not be considered by the Government. The Government will not return any information submitted in response to this notice, nor will the Government pay for any information submitted in reply to this notice. Information submitted in response to this notice will be used in SSA's market research efforts and for procurement planning purposes. The Government reserves the right to contact, or not contact, any party responding to this notice in order to obtain further information for market research purposes. NO FORMAL SOLICITATION IS BEING ISSUED AT THIS TIME. Requests for copies of a solicitation at this time will not be acknowledged. All responses must be submitted in an electronic format (compatible with Microsoft Office 2010) via e-mail to the Contract Specialist. Responses shall not exceed 20 pages. SSA will not review responses that do not comply with its requirements. Faxed information will not be considered. The file size limitation for e-mail attachments is 5 megabytes.
 
Web Link
FBO.gov Permalink
(https://www.fbo.gov/spg/SSA/DCFIAM/SSAR8/COB-13-13008/listing.html)
 
Place of Performance
Address: Social Security Adminstration, 6401 Security Blvd., Baltimore, MD 21235, and Contractor's Facility, Woodlawn, Maryland, 21235, United States
Zip Code: 21235
 
Record
SN02917232-W 20121024/121022233839-dc20dab1f2b333978e603ee36950e3b0 (fbodaily.com)
 
Source
FedBizOpps Link to This Notice
(may not be valid after Archive Date)
FSG Index  |  This Issue's Index  |  Today's FBO Daily Index Page |
ECGrid: EDI VAN Interconnect ECGridOS: EDI Web Services Interconnect API Government Data Publications CBDDisk Subscribers
 Privacy Policy  Jenny in Wanderland!  © 1994-2024, Loren Data Corp.