Other Transaction Solicitation Call: Software Artifact Dependency Graph Generation at Scale
ID: 70RSAT24R00000042Type: Combined Synopsis/Solicitation
Overview

Buyer

HOMELAND SECURITY, DEPARTMENT OFOFFICE OF PROCUREMENT OPERATIONSSCI TECH ACQ DIVWASHINGTON, DC, 20528, USA

NAICS

Research and Development in the Physical, Engineering, and Life Sciences (except Nanotechnology and Biotechnology) (541715)

PSC

GENERAL SCIENCE AND TECHNOLOGY R&D SERVICES; GENERAL SCIENCE AND TECHNOLOGY; BASIC RESEARCH (AJ11)

Original Source

https://sam.gov/opp/87facc5a3a8c49ecb7ea16d1028011d6/view
Timeline
    Description

    The Department of Homeland Security's Science and Technology Directorate seeks innovative solutions through its Silicon Valley Innovation Program (SVIP) for the "Software Artifact Dependency Graph Generation at Scale" project. DHS aims to enhance software vulnerability management by implementing intrinsic identifiers, improving the identification of software components across its operational units. Applicants are invited to submit proposals online, including technical and cost/schedule details, with a focus on enabling public correlations across graphs and creating value-added services. Intellectual property rights will be retained by the successful applicant, while the government gains certain usage rights. With a budget of up to $1.7 million for all phases and a submission deadline of December 16, 2024, this non-FAR-based procurement process offers a comprehensive nine-month schedule and detailed cost breakdowns. Potential vendors should carefully review the specified prohibitions and representations related to federal contracting.

    Point(s) of Contact
    SVIP Team
    DHS-Silicon-Valley@hq.dhs.gov
    Files
    Title
    Posted
    DHS Clauses_8_12_24.pdf
    The file outlines several prohibitions and representations regarding federal contracting. It contains provisions related to the use of appropriated funds, specifically prohibiting agreements with inverted domestic corporations unless waived for national security reasons. Additionally, it mandates prohibitions and representations about telecommunications and video surveillance equipment and services. Contractors must ensure compliance with these requirements and provide necessary disclosures. These provisions aim to safeguard national security and integrity in federal procurement. Agencies must carefully vet and monitor contractors to ensure adherence to these restrictions.
    Public Portal Registration Guide.pdf
    The Department of Homeland Security's Science and Technology Directorate issues this guide to help users register for the Public Portal of the Office of Industry Partnerships. This end-to-end proposal management system supports proposal and award processes for multiple programs, including SBIR, BAA, and SVIP. New users must create accounts with personal and company details, while existing company records require registration with a unique PIN. The portal facilitates secure communication and efficient management of submission and evaluation processes for both proposers and DHS. This manual provides comprehensive instructions, from navigating the portal to registering as a new user, handling company registrations, and logging in with existing accounts. It also allows users to update their account information.
    SVIP_FAQs_8_12_24.pdf
    The Department of Homeland Security's Silicon Valley Innovation Program (SVIP) seeks innovative solutions from non-traditional contractors, including startups. This FAQ guide outlines the application process, eligibility criteria, and review procedures for potential applicants. SVIP funds non-FAR-based prototype projects through Other Transaction Agreements, with topics ranging from technology demonstrations to specific operational needs. Applicants must respond to active topic calls and use the designated web portal for submissions, which are evaluated based on specified criteria. Feedback is provided in writing, and applicants can resubmit if a topic call is still open. The program engages closely with industry, protecting sensitive information and allowing applicants to retain intellectual property rights. Security clearances are not required, but suitability assessments may be conducted for access to sensitive data. With a focus on protecting intellectual property and a prohibition on discussing application details, SVIP encourages applicants to carefully review the documentation and reach out with any questions.
    SVIP Cost and Schedule Volume_8_12_24.xlsx
    The government agency seeks a contractor for a multi-phase project, with a focus on developing a comprehensive report and associated deliverables. The project has a grand total budget of $193,901. Each phase has distinct milestones related to equipment purchases, architecture documentation, proof of concept demonstrations, and commercialization planning. The labor costs are broken down by milestones, categorized into senior engineer, software engineer, and administrative assistant hours, with associated rates. Materials, hardware, and software costs are outlined, including server expenses. Travel expenses are also detailed for trips between Boston and Washington DC. The schedule spans nine months, with milestones assigned to specific months. This file provides a breakdown of costs and tasks for each phase, offering potential vendors a comprehensive overview of the procurement process and requirements.
    SVIP FAQs_8_12_24.pdf
    The Department of Homeland Security's Silicon Valley Innovation Program (SVIP) seeks innovative solutions from non-traditional contractors, including startups. This FAQ guide outlines the application process, eligibility criteria, and review procedures for potential applicants. SVIP funds non-FAR-based prototype projects through Other Transaction Agreements, with focus areas determined by Topic Calls. Applicants must use the designated web portal for submissions, which are evaluated based on specified criteria. The process emphasizes the importance of adhering to deadlines, using designated application templates, and addressing technical and cost aspects. Successful applicants may receive non-FAR-based awards, and intellectual property rights are negotiated. The program encourages applicants to thoroughly review Topic Calls and seek clarification on specific questions via designated email channels.
    SWADG_Technical_Volume_and_Instructions_8_12_24.pdf
    The Department of Homeland Security is seeking innovative solutions for its Software Artifact Dependency Graph Generation at Scale (SWADG) project. Applicants are invited to submit proposals via an online portal, including a Technical Volume (TV) and Cost/Schedule Volume (CSV). The TV, limited to eight pages, must address technical details, while the CSV provides cost and schedule information using specified templates. The focus is on enhancing artifact dependency graphs, with solutions relevant to at least one Technical Topic Area (TTA). TTAs cover enabling public correlations across graphs and creating value-added services. The selected provider will retain intellectual property rights, but the government will gain unlimited use rights for reports and limited rights for project data. The submission deadline is December 16, 2024. Applicants must detail their approach, prototype maturity, and expected outcomes for each phase, beginning with a Phase 1 Minimum Viable Product. The budget for Phase 1 is set at $200,000.
    SWADG_Topic_Call_8_12_24.pdf
    The Department of Homeland Security (DHS) seeks innovative solutions from the private sector to enhance its software vulnerability management capabilities. The goal is to improve the identification and management of software components across DHS operational units. Specifically, DHS aims to implement intrinsic identifiers, such as artifact dependency graphs (ADGs), to complement existing extrinsic identifiers. This approach will contribute to a more efficient and effective software identification ecosystem. DHS invites applications for developing intrinsic identifier generation capabilities integrated into foundational open-source technologies, focusing on compilers, build toolchains, and post-build processes. Additionally, DHS seeks value-added services that leverage ADGs, benefiting enterprise, system administrator, and developer workflows. Applicants can propose solutions across three technical topic areas, each supporting open-source software communities and enabling broad adoption. The selected solutions will undergo a four-phase development process, with potential follow-up operational testing. The SVIP program offers funding opportunities of up to $1.7 million for Phases 1-4 and encourages commercialization and transition to operation. The submission deadline is December 16, 2024.
    SWADG Technical Volume and Instructions_8_12_24.pdf
    The Department of Homeland Security is seeking innovative solutions for its Software Artifact Dependency Graph Generation at Scale (SWADG) project. Applicants are invited to submit proposals via an online portal, including a Technical Volume (TV) and Cost/Schedule Volume (CSV). The TV, limited to eight pages, must address technical details, while the CSV provides cost and schedule information using specified templates. The focus is on enhancing artifact dependency graphs, with solutions relevant to at least one Technical Topic Area (TTA). TTAs cover enabling public correlations across graphs and value-added services. The selected provider will retain IP rights, but the government will gain unlimited use rights for reports and limited rights for project data. The proposed solution should demonstrate understanding of the technical challenges and offer a viable product. This request is part of a four-phase project, with the first phase involving a minimum viable product delivery. Applicants must register and submit their proposals by the deadline to be considered.
    SWADG Topic Call_8_12_24.pdf
    The Department of Homeland Security (DHS) seeks innovative solutions for Software Artifact Dependency Graph (ADG) Generation at Scale. This initiative aims to enhance cybersecurity and software vulnerability management across federal agencies and critical infrastructure. DHS requires a common approach to identifying software components to streamline collaboration among developers, researchers, and defenders. The solicitation seeks technical capabilities that integrate intrinsic identifiers, like ADGs, into foundational open-source technologies across various programming languages. These identifiers, embedded during compilation or packaging, enable efficient software identification and enhance vulnerability response. Offerings should focus on one or more Technical Topic Areas (TTAs), encompassing intrinsic identifier generation and value-added services that leverage ADGs. Each TTA has specific open-source capabilities (OSSC) requirements. Applications should detail Phase 1 efforts to demonstrate proof-of-concept and may receive up to $200,000 in funding. Subsequent phases focus on prototype development, testing, and operational readiness, with potential funding up to $1.7 million in total.
    Lifecycle
    Title
    Type
    Other Transaction Solicitation Call: Software Artifact Dependency Graph Generation at Scale
    Currently viewing
    Combined Synopsis/Solicitation
    Similar Opportunities
    U.S. Department of Homeland Security (DHS) Small Business Innovation Research (SBIR) Program 25.1 Solicitation
    Homeland Security, Department Of
    The U.S. Department of Homeland Security (DHS) is inviting small business concerns to participate in its Small Business Innovation Research (SBIR) Program through Solicitation No. 70RSAT25R00000005. This opportunity encourages innovative proposals focused on homeland security-related research and development, particularly in areas such as cybersecurity, emergency response systems, and biometric technologies. The program aims to stimulate technological innovation and support small businesses in meeting federal R&D needs, with proposals due electronically by January 21, 2025. Interested parties can reach out to primary contact Aleyson Bickley at aleyson.bickley@hq.dhs.gov or secondary contact Danette Williams at danette.williams@hq.dhs.gov for further information.
    Non-Intrusive Inspection (NII) Common Integration Platform (CIP) Software
    Homeland Security, Department Of
    The Department of Homeland Security, specifically the U.S. Customs and Border Protection (CBP), is seeking proposals for the development and maintenance of a Non-Intrusive Inspection (NII) Common Integration Platform (CIP) software. This procurement aims to enhance border security by integrating various NII systems with CBP's existing IT infrastructure, facilitating improved data sharing and operational efficiencies in the inspection of cargo and individuals. The initiative is critical for optimizing border security operations while ensuring compliance with federal regulations and enhancing the flow of legitimate trade. Interested vendors should note that proposals are due by January 15, 2025, with an estimated contract value between $5 million and $10 million, and can contact Nicholas Martinelli at nicholas.martinelli@cbp.dhs.gov for further inquiries.
    2024 Department of Homeland Security (DHS) Directorate of Science and Technology (S&T) Long Range Broad Agency Announcement (LRBAA) 24-01
    Homeland Security, Department Of
    The Department of Homeland Security (DHS) is issuing the Long Range Broad Agency Announcement (LRBAA) 24-01, aimed at funding innovative scientific and technical projects that enhance the operational capabilities of the Homeland Security Enterprise. This announcement invites proposals across a wide range of research areas, including counter-terrorism, cybersecurity, and agricultural threat resilience, with a focus on transitioning cutting-edge technologies into DHS operations. The LRBAA emphasizes collaboration with industry and academia, and interested parties are encouraged to participate in an Industry Day event on August 21, 2024, to learn more about the submission process and available topics. For further inquiries, contact John Whipple at john.whipple@hq.dhs.gov or Jason Rios at Jason.Rios@hq.dhs.gov.
    Advanced Computing Branch Subject Matter Expert (SME) Support
    Homeland Security, Department Of
    The Department of Homeland Security (DHS) is seeking qualified vendors to provide Subject Matter Expert (SME) support for advanced computing projects, including areas such as cybersecurity, artificial intelligence, data analytics, and quantum information sciences. The procurement aims to enhance homeland security missions by leveraging advanced computing technologies and requires expertise in scientific evaluation, technical support, and program management to assist the DHS Science and Technology Directorate (S&T) in its core research and technological advancement efforts. This initiative is crucial for addressing critical national security challenges and ensuring effective deployment of scientific resources. Interested parties should submit their responses detailing their capabilities and experience by contacting Khadijah Dark at khadijah.dark@hq.dhs.gov or Jason Rios at jason.rios@hq.dhs.gov, with the anticipated contract spanning five years and a total performance period of up to seven years.
    Request for Information 70RSAT25RFI000001 for DHS Public Access Data Repository for DHS Peer-Reviewed Journal Scientific Data
    Homeland Security, Department Of
    The Department of Homeland Security (DHS) is seeking information through a Request for Information (RFI) to develop a Public Access Data Repository that will facilitate the posting of scientific data from peer-reviewed publications funded by the department. The objective is to create a customized repository that allows for the safe storage, sharing, and public accessibility of releasable scientific data while ensuring compliance with data management protocols and cybersecurity standards. This initiative is part of DHS's commitment to enhancing data transparency and accessibility, promoting collaboration within the scientific community, and supporting national security efforts. Interested vendors are encouraged to submit their responses by January 21, 2025, and can direct inquiries to Aleyson Bickley at aleyson.bickley@hq.dhs.gov.
    Open Source Software: Structured Threat Intelligence Graph: Revolutionizing Cybersecurity Data Management
    Energy, Department Of
    The Department of Energy, specifically the Battelle Energy Alliance at the Idaho National Laboratory, is seeking to advance cybersecurity data management through the development of the Structured Threat Intelligence Graph (STIG), an innovative open-source software solution. This software aims to revolutionize the visualization, management, and analysis of cybersecurity threats by providing a graphical user interface for Structured Threat Information eXpression (STIX) data, thereby enhancing decision-making capabilities in a rapidly evolving threat landscape. STIG is designed for various applications, including cybersecurity analysis, incident response, and research and development, emphasizing its importance in improving automated threat response and customization for utility companies. For further inquiries, interested parties can contact Andrew Rankin at andrew.rankin@inl.gov.
    DHS Public Safety and Violence Prevention (PSVP) Program - Broad Agency Announcement
    Homeland Security, Department Of
    The Department of Homeland Security, Department of, Office of Procurement Operations, SCI TECH ACQ DIV has issued a Combined Synopsis/Solicitation notice for the DHS Public Safety and Violence Prevention (PSVP) Program - Broad Agency Announcement. This 5-year Broad Agency Announcement (BAA) aims to support the DHS Science and Technology (S&T) Public Safety and Violence Prevention (PSVP) Program. The BAA includes Call 0001, which consists of three separate technical topic areas seeking responses from industry. It is important to review the entire BAA Announcement, Call 0001, and associated Statements of Objectives for each of the three technical topic areas. For more information, please contact the PSVP PMO at PSVP@HQ.DHS.GOV.
    Sources Sought Notice (SSN)/Request for Information (RFI) – 70SBUR25I00000009 Identity, Credentials, and Access Management - Enterprise Services 3 (ICAM-ES 3)
    Homeland Security, Department Of
    The Department of Homeland Security, specifically the U.S. Citizenship and Immigration Services (USCIS), is seeking information from small business vendors through a Sources Sought Notice (SSN)/Request for Information (RFI) regarding the Identity, Credentials, and Access Management - Enterprise Services 3 (ICAM-ES 3) program. The objective is to gather market research on technical and program management support for maintaining the USCIS ICAM enterprise IT services program, which is crucial for enhancing security, privacy, and efficiency across various systems. Interested vendors are invited to provide detailed information about their capabilities, past experiences, and relevant projects, particularly in areas such as technology integration and zero-trust implementation. Responses are due by January 17, 2025, and should be directed to Sylwia Salkic at Sylwia.Salkic@uscis.dhs.gov or Gary Whitney at gary.d.whitney@uscis.dhs.gov.
    Counter Unmanned Aircraft Systems (C-UAS) U.S. Capability Optimization Research Environment (CORE) II
    Homeland Security, Department Of
    The Department of Homeland Security (DHS) is seeking vendors to participate in the Counter Unmanned Aircraft Systems (C-UAS) Capability Optimization Research Environment (CORE) II, an initiative aimed at optimizing C-UAS technologies through international collaboration. Vendors are required to provide integrated C-UAS solutions capable of detecting, tracking, and identifying Group 1 and 2 unmanned aircraft systems (UAS), with applications in areas such as prison security, critical infrastructure protection, and event security. The total unit cost for the proposed solutions must not exceed $250,000, covering all necessary hardware, software, and operational components. Interested vendors should submit their proposals by the specified deadline to Jason Rios at jason.rios@hq.dhs.gov or Mohammed Rizki at mohammed.rizki@hq.dhs.gov, with the demonstration event scheduled for May 12-16, 2025, at Fort Wolters National Guard Base in Mineral Wells, Texas.
    Proliferated Warfighter Space Architecture Tranche 3 Program Integration (T3PI) Solicitation
    Dept Of Defense
    The Department of Defense, through the Space Development Agency (SDA), is soliciting proposals for the Proliferated Warfighter Space Architecture Tranche 3 Program Integration (T3PI). This procurement aims to secure systems engineering and integration support for the development and integration of next-generation space vehicles and associated ground segment elements, enhancing capabilities in missile warning, tracking, and defense. The T3PI program is critical for advancing military space capabilities, ensuring the Joint Warfighter can effectively deter and respond to emerging threats. Proposals are due by 1200 EST on January 31, 2025, with inquiries directed to ussf.pentagon.sda.mbx.sda-25r0001-t3pi@mail.mil. Interested offerors should note that the acquisition is subject to funding availability and may result in a single contract award.