Close 

DISA asks industry for secure architecture that gives smart phones and tablets access to DOD networks

ARLINGTON, Va., 25 Sept. 2012. The U.S. Defense Information Systems Agency (DISA) in Arlington, Va., is asking industry to develop a mobile device common access card (CAC)-enabled virtual thin client that gives personal or government mobile devices like smart phones and tablet computers a secure way to access information and applications on U.S. Department of Defense (DOD) networks.

DISA issued a broad agency announcement (DISA-BAA-12-01) Monday asking industry to develop this kind of information security architecture across many different mobile devices, which is considered an information security advantage to the DOD.

Proposals should address one or more mobile handheld communications device available on the commercial market as of last month. Security solutions should be widely compatible with current hardware and mobile devices based on the Android OS, Apple iOS, or BlackBerry OS that are likely to be available next year, DISA officials say.

Secure architectures that enable mobile devices to access DOD networks should not enable these devices to retain data transmitted from government servers. Proposals should focus on virtual thin client operation together with a fixed location government back end acting as a thin client server.

Related stories

-- U.S. military begins moving its information technology (IT) infrastructure to secure cloud computing

-- Rugged smartphones blend with information security, anti-tamper for secure battlefield communications

-- Secure data storage helps deliver mission-critical information to defense and aerospace personnel.

Proposals should include requirements for mobile authentication of users to the back end server and contain one or more interim and final authentication solutions, as well as data in transit encryption.

Proposals also should consider Secure/Multipurpose Internet Mail Extensions (S/MIME) for e-mail clients that will enable signing and encryption with certificates stored on a CAC even in the case where the email client is running on a government back end server.

The aim is to make the most of today's commercial mobile handheld devices while simultaneously addressing security, CAC authentication, e-mail signing, and encryption requirements.

Those responding are strongly encouraged to submit a proposal abstract in advance of a full proposal. DISA will respond to proposal abstracts with a recommendation to propose or not propose within 20 days of submission. Early submissions are strongly encouraged.

Companies interested should respond no later than 25 March 2013. For questions or concerns contract DISA Contracting Officer Meghan Eversgerd by phone at 618-229-9421 or by e-mail at meghan.e.eversgerd.civ@mail.mil, or Contract Specialist Michael Toohey by phone at 618-229-9297 or by e-mail at michael.e.toohey.civ@mail.mil.

More information is online at https://www.fbo.gov/spg/DISA/D4AD/DITCO/DISA-BAA-12-01/listing.html.

Follow Military & Aerospace Electronics and Avionics Intelligence news updates on Twitter


To access this Article, go to:
http://www.militaryaerospace.com/content/mae/en/articles/2012/09/disa-secure-mobile.html