SOURCES SOUGHT
D -- DMARC Analytics
- Notice Date
- 10/20/2017
- Notice Type
- Sources Sought
- NAICS
- 541519
— Other Computer Related Services
- Contracting Office
- General Services Administration, Federal Acquisition Service (FAS), Assisted Acquisitions Services (WQA), 301 7th St SW Rm 6109, Washington, District of Columbia, 20407, United States
- ZIP Code
- 20407
- Solicitation Number
- 18F_DMARC
- Archive Date
- 11/11/2017
- Point of Contact
- Al Munoz, Phone: 2027344226
- E-Mail Address
-
alberto.munoz@gsa.gov
(alberto.munoz@gsa.gov)
- Small Business Set-Aside
- N/A
- Description
- <img style="border-width: initial; border-style: none; transform: rotate(0rad);" src="https://lh5.googleusercontent.com/F5NkE921fKEgorBqXe6iIihRl2sAMpokOLJEmnRfGMOTtzAsUdlxzSwyPKYo2fFkVpJlbl9DAjyQ34Hp2nXnpQeLIlRbCW8kiglWv8PfEfL78dzfwAT8Pi3husbI_6oaBxgYLh6W" alt="" width="98" height="99" /> The Login.gov team is looking for solutions to provide DMARC analytics to produce actionable information and dashboards from the raw reports. Login.gov currently publishes a DMARC record in informational mode only. Login.gov intends to publish a DMARC policy to tell email receivers to send reports to the vendor. When email providers receive email that purports to be From @login.gov, they will send information to the vendor selected by Login.gov's policy. Email providers will: -Send aggregate reports of how many messages passed or failed DMARC checks -Send forensic reports only for fraudulent messages that failed authenticity checks. These reports commonly include message headers and metadata, but not message content. The Government is currently performing market research to determine industry capabilities in: -The DMARC vendor receives these aggregate reports and forensic reports, and creates analytics dashboards and performance over time -Login.gov team members then can view these aggregate reports and forensic reports All information flows from email providers to the DMARC vendor, so Login.gov is not sharing any additional information with third parties, only directing third parties in how they may share these reports. The aggregate reports do not contain any PII. Forensic reports typically contain email headers, which can contain email addresses and information about what email servers a message passed through. But these reports are only sent for messages that fail authenticity checks, which could happen if the message was truly fraudulent, or the email provider modified the message to invalidate the email signatures, or if Login.gov made a major programming error and was not correctly signing messages. Interested vendors should respond to this request for information by: - Emailing the contracting officer a written response at ALBERTO.MUNOZ@GSA.GOV - Outlining their potential solution including technical details and pricing - Providing their identifying information This is a request for information only. Responders will be notified if/when the Government follows the request for information with a procurement action.
- Web Link
-
FBO.gov Permalink
(https://www.fbo.gov/notices/38358d521af076d461a94779457f4136)
- Record
- SN04719501-W 20171022/171020231252-38358d521af076d461a94779457f4136 (fbodaily.com)
- Source
-
FedBizOpps Link to This Notice
(may not be valid after Archive Date)
| FSG Index | This Issue's Index | Today's FBO Daily Index Page |