DISA seeks technology upgrades and solutions to the Department of Defense (DoD) Secure Access File Exchange (SAFE) application. The objective is to introduce a new modernized SAFE application and back-end architecture that can continue to support the DoD file sharing capability with the growing requirement set to provide a more secure file sharing capability that supports larger file sizes to a continuously growing set of users.

DISA is in the need of a modernized DoD SAFE file sharing capability to allow for larger file sizes of 40GB or larger to be shared between DoD users and supporting parties through a secured design architecture, built on zero-trust principals that is also scalable to meet growing demands on the system from higher utilization and larger file sizes. The solution will need to be hosted either through an On-Premises solution or through a GovCloud FedRAMP hosted solution provider and meet all applicable STIGS, privacy laws, regulation, and Executive Orders to include but not limited to the Privacy Act of 1974, e-Government Act of 2002 and the Right to Financial Privacy Act Regulations (32 CFR Part 275). The solution is expected to comply with the DoD’s emerging Zero Trust Framework and will need to be capable of achieving a Provisional Authority to Operate.

In December 2018, DISA tasked the Services Directorate with developing and fielding a DoD file sharing service to fill the capability gap that would be left by the decommissioning of the Aviation and Missile Research, Development and Engineering Center (AMRDEC) SAFE file sharing platform. Since that time, DISA has leveraged a number of requirements on the program in order to safeguard the system and improve the level of service and capability in order to better serve users.

The purpose of this RFI is to capture information on new file sharing technologies and capabilities that can be employed to modernize the DoD SAFE file sharing capability that can support both Impact Level 5 (IL5) and Impact Level 6 (IL6) standards for deployment to both the Non-Classified Internet Protocol Router Network (NIPRNet) and Secret Internet Protocol Router Network (SIPRNet). DISA is looking to gather Rough Order of Magnitude information for such technologies, along with information on innovative strategies for the development of a resilient, scalable architecture that will support the current and future demands placed on the system as the user base and file size demands continue to grow. The objective for this upgrade will be fielding of the capability within 12 months of award.