Procurement and Delivery of SSL Certificate Subscription for PCW Web-based Systems

PhilGEPS Reference: 

5476272

Area of Delivery: 

  • Metro Manila

Bid Duration: 

2018-07-11 00:00 to 2018-07-16 17:00

Bid Status: 

Active

Procurement Mode: 

Negotiated Procurement-Small Value Procurement

Bid Classification: 

  • Goods

Bid Category: 

  • Information Technology

Budget: 

PHP 120,000.00

Delivery Period: 

30 Day/s

Description: 

BACKGROUND
The Philippine Commission on Women (PCW) intends to strengthen the security measures in place in its IT infrastructure in order to comply with Republic Act 10173 or the Data Privacy Act of 2012. Currently, PCW is hosting information systems that store personal information of our internal and external users. One of the system that PCW is managing the Gender Mainstreaming Monitoring System (GMMS). The GMMS is an online system for automating the GAD Plan and Budget (GPB) and GAD Accomplishment Report (GAD AR) submission of the agencies, GOCCs, SUCs and other government instrumentalities. Through the submissions, government progress in gender mainstreaming can be monitored.

One of the measure that PCW plans to implement is the adoption of Secure Socket Layer (SSL) Certificates. It is the standard technology for keeping an internet connection secure by establishing an encrypted session between a web server and a client web browser. It safeguards any sensitive data that is being sent between two systems, preventing unsolicited connection initiated by those with malicious intent from reading and modifying any information being transferred especially those that contains personal sensitive information.

Thus, the Philippine Commission on Women wants to assure its users that the information being sent to and from its web-based systems over the internet are secure and that sensitive information are encrypted without any third party understanding it.

OBJECTIVES
The Project aims to:
a. Secure the PCW web-based information systems by deploying SSL certificates

EXPECTED OUTPUTS
a. SSL certificates deployed to each of the PCW web-based system
b. Capacitate the CAIRMD-staff in the deployment of the SSL certificates to each of the PCW web-based systems

TECHNICAL SPECIFICATIONS
The provider should be able to provide SSL certificate subscriptions for one (1) year for the following:
• One (1) – Extended Validation Standard SSL with Six (6) EV SAN Sub Domain
• One (1) Organization Validated Standard SSL for IP with 2 SAN Public IP

General Specifications:
• Browser should display HTTPS with closed padlock;
• For EV SSL - Activates the Green Address Bar and displays your Philippine Commission on Women as the Company Name;
• Clickable Secure Site Seal;
• Universal compatibility with all browsers and devices;
• Issuance Speed is 1-5 Days;
• Validity period: 1 year;
• Unlimited SSL server licensing within certificate validity period;
• Unlimited reissuance to different servers / replacements for lifetime of Certificate ;
• Phishing detection alert
• Should come with a free SSL and website Security Checker with evaluation reports;
• Should have a free management portal to manage purchased certificate with free feature to set unlimited number of user administrator;
• Should have a free certificate inventory tool to locate all SSL Certificates both on internal and public networks regardless of issuing CA;
• There should be an alert/notification for expiration of certificates;
• Free additional 30 days should be added on top of the expiration date of certificate for every renewal;
• Online support page should be available for reference on how to generate CSR and install certificate;
• Verified domain name and Organization name should be displayed in certificate;
• Grace period of 30 days when renewing or switching to other certificate provider

Technical Features
• Signature algorithm strength is SHA-256 with ECC option;
• Certificate should be 2048 bit encryption strength;
• Certificate provided should secure top level domain name as well as its 1st level Subdomains;
• Certificate should support SAN options;
• It should secures both www.domain.com and domain.com (without the www);
• Root certificate should be available on all major browsers;
• Underwritten Warranty should not be lower than US$1.25M;
• Certificate should perform Browser to Server authentication as well as server to server;
• Cryptographic protocol version should be TLS 1.2;
• Integration with Microsoft Azure Key Vault;
• Trust Service Principles and Criteria for Certification Authorities:
• Certificate Provider should be a Global Public Certification Authority;
• Certificate Provider should be a member of CA Browser Forum;

Support:
• Vendor-assisted generation and installation of certificates
• Vendor should have local technical support team that can be contacted via phone or email;
• Support should be provided from 9:00 AM to 6:PM Mondays thru Fridays;

PROJECT TIMELINE
SSL Certificate should be issued within one month after notice to proceed. Vendor should provide installation guide and steps on how to install certificate.

PAYMENT SCHEME
The total approved budget for the contract (ABC) for the project is One Hundred Twenty Thousand Pesos (120,000.00) inclusive of applicable bank charges and government taxes. Payment will be made within 30 days upon issuance of certificates and upon issuance of a Certificate of Acceptability of outputs and services by the PCW.

CONFIDENTIALITY and NON-DISCLOSURE CLAUSE
The Contactor warrants the full confidentiality of all information gathered for the contract given by PCW pursuant to existing laws. The Contractor shall not disclose any communication disclosed by PCW for the purpose of this engagement. After the completion of the contract, all materials, data, and other related documents provided must be returned to PCW.

Attachments: