Electronic Access Control Security System
Request for Information (RFI)
Background
The Metropolitan Washington Airports Authority (Airports Authority) operates electronic key-based
access systems at Ronald Reagan Washington National Airport (DCA), Washington Dulles
International Airport (IAD, and the Dulles Toll Road. The legacy Intellikey-based infrastructure is
nearing end-of-life and requires replacement with a modern, secure, maintainable electronic access
control solution.
The Airports Authority has a multi-level security requirement as a sensitive transportation hub. As
such, certain areas of the airports require additional security capabilities to ensure only authorized staff
have access. These would be controls in addition to current access tools which limit access to the
airside facilities and other operational locations.
Key considerations for an electronic access control solution include, high availability and reliability,
routine maintenance support, advance communications for firmware updates and on-going support,
streamlined management of access permissions, and efficient and intuitive programming tools for the
physical access control devices (keys, card, fob, etc.).
The Airports Authority is requesting information from vendors regarding available electronic access
control systems that could replace or upgrade its current system. The goal of this RFI is to solicit
information from industry to assist the Airports Authority in structuring a future solicitation.
Requested Information
The Airports Authority requests the following information.
I. What type electronic access control solution would be optimal for the Airports Authority
managing sensitive locations?
- What are some typical considerations in developing requirements for an electronic
access control solution and right-sizing the appropriate level of security?
II. What is an optimal system architecture and why?
- Which solution architecture provides more capabilities, reliability, and efficient
management, one that is cloud-based, on-premise, or hybrid?
III. Which types of devices are considered the most efficient in terms of use, maintenance,
programming, and upgrades (key, card, fob, mobile, etc.)?
- What are some limitations for each?
- Is multi-factor validation (ex. device plus PIN) a consistent feature in deployed systems?
IV. What are some typical back-up features and capabilities to ensure continuing operations during
power or telecommunications outages?
V. For a site with approximately 50 locations, what would be an installation timeline with legacy
infrastructure in place, ie telecommunications, power, etc.
- What would be an installation timeline with infrastructure being re-established at new
locations?
VI. What are some considerations in evaluating vendor capabilities?
VII. What would be included in a typical maintenance service agreement?
VIII. What is the typical useful life of such systems, 5 years, 10 years, other?
Responses
This RFI is for information and planning purposes only. The requested information is not intended to
solicit technical or price proposals. Proprietary information is neither sought nor desired by the Airports
Authority. All information received will be treated as being nonproprietary. A solicitation for an actual
solution will be issued in the future after requirements have been refined and finalized. Not responding
to this RFI does not preclude participation in any future RFQ.
Responses are limited to 5-10 pages. Submission of information does not commit a responding party
to submit a proposal to any subsequent solicitation. Commenters are advised that the Airports Authority
is under no obligation to acknowledge receipt or provide feedback with respect to any comments
received under this announcement.
All Responses must be submitted electronically in a single Portable Document Format (PDF) File and
must be received no later than May 22, 2026. Submit responses via e-mail only to
Ramon.Menchaca@mwaa.com.
