Public Transport Layer Security Certificates for the Continued Implementation of HSPD-12

INTENT TO AWARD A SOLE SOURCE. The U.S. Department of Health and Human Services (HHS), through the Program Support Center (PSC), Financial Management Portfolio (FMP), Acquisition Management Services (AMS), intends to negotiate on a sole source basis with Entrust Inc., located at 5420 LBJ Freeway, Suite 300, Dallas, Texas, for the purchase of 3,147 Public Transport Layer Security Certificates. The statutory authority is 41 U.S.C. 3304(a)(1), as set forth in Federal Acquisition Regulation (FAR) 6.302-1, only one responsible source and no other supplies or services will satisfy agency requirements.Entrust shall provide Public Transport Layer Security certificates to support the HSPD-12 Personal Identity Verification (PIV) smart card capability in compliance with the Federal Common Policy Framework, inclusive of Public Transport Layer Security certificates.The purchase of the Public Transport Layer Security certificates will be a Contract Line Item Number (CLIN), as part of an overall

award to Entrust against its GSA Schedule, in response to solicitation number 18-233-SOL-00825. The competitive solicitation was posted to GSA eBUY on September 5, 2018, with a closing date of October 10, 2018. Entrust was the only firm to respond to the solicitation. The quote specified that the Public Transport Layer Security certificates were not on GSA schedule. These certificates are needed to meet the objectives of the task order. The Public Transport Layer Security certificates are required to operate HSPD-12 compliant PIV cards and over 3,000 HHS.GOV internally and externally facing webpages. Therefore, an award with an open market CLIN will be made to Entrust.Entrust was the only firm to respond to solicitation number 18-233-SOL-00825. Entrust meets the all mandatory PKI service provider requirements. Entrust is an approved GSA PKI provider, cross-certified with the Federal PKI bridge. Entrust provides certificates and certificate maintenance activities to support the Program's Personal Identity Verification (PIV) smart card capability in compliance with the Federal Common Policy Framework. This framework provides guidance for the implementation of a PKI service to enable secure communication, authentication of entities and electronic content, and the exchange of secure attribute-level assertions. Entrust is certified by the Federal PKI Policy Authority as a PKI Shared Service Provider. Entrust provides open standard-compliant certificates, including PKI software certificates, Private Transport Layer Security certificates, and Public Transport Layer Security certificate.Entrust will provide HHS with a seamless continuation of Public Key Infrastructure Services for the Continued Implementation of HSPD-12. HHS relies on PKI certificates for over 218,000 HSPD-12 compliant PIV cards and over 3000 HHS.GOV internally and externally facing webpages that without Entrust support will be rendered inoperable and webpages inaccessible to employees, contractors and the general public. A sole source to Entrust for the Public Transport Layer Security certificates allow HHS to continue compliant maintenance of its public facing websites, as required by OMB M-15-13.THIS IS NOT A SOLICITATION FOR COMPETITIVE PROPOSALS. NO SOLICITATION IS AVAILABLE; THEREFORE, REQUEST FOR SUCH DOCUMENT WILL BE CONSIDERED INVALID RESPONSES.All responsible sources that have determined they meet the all mandatory PKI service provider requirements and are an approved GSA PKI provider, cross-certified with the Federal PKI bridge, may submit a capabilities statement. Capabilities statements should clearly indicate business size. The email subject line must reference "Public Transport Layer Security Certificates for the Continued Implementation of HSPD-12." All responses are due by February 22, 2019 at 12:00 pm Eastern Time and sent to tory.estabrook@psc.hhs.gov. A determination by the Government not to compete this CLIN is solely within the discretion of the government.