RFI for Client-Side Security Solutions

The issuing agency is seeking information on client-side security solutions to protect against modern browser-based payment threats. The agency needs to solve vulnerabilities related to unauthorized script execution, browser-based payment card data interception, third-party or supply-chain compromise, and unauthorized modification of payment page content or behavior. Because this is a preliminary Request for Information, the main Request for Proposal document is not currently available on the agency website. Eligible vendors must be located onshore within the United States. The agency requires the performance of the work to be completed offsite. The agency is currently looking for proposals to determine budget parameters and has not disclosed a specific funding limit. Key dates and formal evaluation criteria are not specified in this initial information request.