This RFI seeks market research information regarding vendor solutions capable of delivering a TLEP-like system that meets the following technical, functional, and operational requirements: 1 Technical & Functional Requirements • Authentication Assurance: o Standards Compliance: Support for NIST SP 800-63-3 defined levels (AAL1, AAL2, and AAL3). o Multi-Factor Methods: Implement device-bound FIDO2 passkeys as the primary method, complemented by alternative options such as browser-based tokens and mobile app–based biometric verification. o Continuous Risk Monitoring: Deploy mechanisms for adaptive re-authentication when anomalies are detected. • Attribute-Based Access Controls (ABAC): o Granular Access: Enable fine-grained access management using agency identity portal identities across multiple law enforcement applications. o Dynamic ORI-Context: Support dynamic switching based on active Originating Agency Identifier (ORI), so that a user’s access rights align with the policies of the selected agency.
