.

.

.
.


.

.
.
.

// //

// //

// //

This summary document does not constitute a part of the subject RFP and/or Contract. This summary is provided only
for guidance to vendors before they purchase the RFP

Summary of RFP for Procurement, implementation, operation and

maintenance of PKI Digital Trust Services
National Center for Digital Certification (NCDC) was formed by the Electronic Transactions Act dated 8
RabiI-1428H and has been established under the Ministry of Communications and IT (MCIT) to oversee
and manage tasks relating to issuance of digital certificates in the Kingdom of Saudi Arabia.
The objectives of NCDC are to set regulations on the use of PKI in Saudi Arabia, ensure best-practices are
followed, and to promote the use of PKI in Saudi Arabia. For this purpose, National Center for Digital
Certification has initially implemented an X.509 PKI setup comprising Saudi National Root-CA,
Government CA and related validation and repository services to manage the lifecycle of digital
certificates.
In order to promote the use of PKI in Saudi Arabia, NCDC has taken this initiative to implement a set of
centralized PKI digital trust services that will integrate the current PKI setup at NCDC with service provider
applications at different public and private sector entities. Adoption of NCDC PKI digital trust services by
service providers is currently planned to be on an as-needed basis. NCDC visions the use of these digital
trust services across the Kingdom of Saudi Arabia by all participants who are interested in the use of
digital certificates and the digital trust services provided by NCDC are expected to co-exist with similar
current and upcoming initiatives from other agencies or organizations in Saudi Arabia.
The purpose of this RFP is to recruit a suitable and qualified system integrator / implementer to provide
the services and technical solutions needed for implementing NCDCs requirements for the
implementation of its PKI digital trust services taking into consideration the latest global technologies and
leading practices. The PKI digital trust services required in the RFP are: 1) Centralized PKI authentication,
2) Digital signature, 3) Timestamping and 4) Long-term archiving. The response to this RFP shall be based
on the requirements and structure outlined in this RFP document and in the accompanying appendices to
this RFP.
Interested parties may contact the Ministry of Communications and IT Contracts and Purchase
department for completing the necessary formalities and purchasing the RFP.
The following timetable represents key milestones for this tender:
Milestone

Date

Tender Issuance

Sunday 23/07/1434H , 02/06/2013

Deadline for receiving clarifications related to the tender

Tuesday 01/09/1434H, 09/07/2013

Proposal Submission date

Saturday 17/10/1434H, 24/8/2013

Tender Cost

Vendors need to pay SAR 3000 at the

collection of the RFP.

This summary document does not constitute a part of the subject RFP and/or Contract. This summary is provided only
for guidance to vendors before they purchase the RFP