USGS home page USGS home page
U.S. Geological Survey

 

 FREQUENTLY ASKED QUESTIONS

  1. What public laws govern electronic transactions between the Federal Government and the public?
  2. What is MIFORMS?
  3. Why should I use the MIFORMS Web-based system?
  4. How can I become a MIFORMS user?
  5. How will I know when I can submit data for the next reporting period?
  6. Who should I contact with questions, comments, or suggestions?
  7. Can anyone see or change the data while it is in transit?
  8. How can I ensure that my data are secure?
  9. What is cache and how do I minimize its size?
  10. How do I really know who it is at the other end of the connection?
  11. Who authenticates your certificate and what does it show?
  12. How do I know if a certificate is invalid or forged?
  13. What browsers work best with the e-forms system?
  14. What are ‘sockets’? What is Secure Sockets Layers (SSL) and why is the version important?
  15. What is Secure Sockets Layer (SSL)?
  16. Why is the Secure Sockets Layer (SSL) version important?
  17. How do I enable JavaScript?
  18. What is 128-bit strong encryption?
  19. How do I know if I have 128-bit encryption? Because 128-bit encryption technology cannot be exported, do international versoins of browsers operate at lower levels of encryption?
  20. What do you mean by ‘direct-downloaded browsers’ and where can I get them?
  21. Do you use cookies?
 

What public laws govern electronic transactions between the Federal Government and the public?
Although confusing to many people, the Government Paperwork Elimination Act (GPEA) and the Paperwork Reduction Act (PRA) are not synonymous. While the PRA limits information the Federal Government collects from the public in any form, the GPEA promotes electronic business with the public. The Office of Management and Budget (OMB) is responsible for issuing policies on implementation for both Acts. Under the GPEA, organizations and people who are requested to submit information to the government, or maintain information, must be given the option to do so electronically, when practicable. This option includes implementing security appropriate for the information to be transmitted.

To the top

What is MIFORMS?
MIFORMS is the Minerals Information Web-based electronic data collection system developed by the U.S. Geological Survey to enable respondents to submit, view, modify, print, and locally store canvass forms and data in accordance with the GPEA. For each reporting period, you will receive an e-mail reminder to submit your data.

To the top

Why should I use the MIFORMS Web-based system?
An electronic data collection system not only speeds the collection, aggregation, and analyses of minerals information but also helps us expedite our publications to recipients. MIFORMS offers you many benefits over the traditional paper system:

  • It’s fast...you can save time.
  • It’s accurate...because there are verification steps along the way, you can check and review your information before it is sent.
  • It’s convenient...MIFORMS is available to you 24 hours a day, 7 days a week.
  • It’s easy to use...it’s a step-by-step process that tells you what information you need to successfully complete your canvass form for any commodity.
  • It’s secure...MIFORMS offers the highest levels of security on the Internet.

To the top

How can I become a MIFORMS user?
Use the "user registration" page to become a user of the e-forms system.

Please note that many forms canvassing less than 10 operations are not presently on MIFORMS.

Also, you will not be able to submit registration forms for certain canvasses on MIFORMS. For those canvasses, if you meet the requirements to be considered as a respondent for a given year, they will automatically be added to your drop-down list of canvasses and, of course, e-mail reminders will also be sent for those canvasses to remind you to submit your data. These canvasses include:

  • Production Estimate (USGS Form 9-4042-A [one commodity] and USGS Form 9-4124-A [two or more commodities]).
  • Mine, Development, and Mineral Exploration Supplement (USGS Form 9-4000-A).
  • Comprehensive Test Ban Treaty (USGS Form 9-4040-A).

To the top

How will I know when I can submit data for the next reporting period?
For each reporting period, you will receive an e-mail reminder to submit your data.

To the top

Who should I contact with questions, comments, or suggestions?
To ensure that you email the proper person, you may visit our feedback page. You may also call us. Please call 703-648-6437 for questions or comments regarding the general operation and administration of the eforms system. Alternatively, please call 703-648-7960 for any questions regarding the content of a specific form or to request a Respondent ID.

To the top

Can anyone see or change the data while it is in transit?
We employ industry-standard physical, electronic, and procedural security safeguards to protect any identifiable information that you have provided to us from loss, misuse, or unauthorized alteration. Whenever we prompt you to transmit sensitive information such as production data to us through our Web site, we support encryption of your data by your browser as it is transmitted. Our Web site employs Secure Sockets Layer (SSL) to provide authentication and encryption services. If anyone monitoring the line intercepts a transmission and modifies it, the data will fail to decrypt at the other end.

To the top

How can I ensure that my data are secure?
When you log onto our Web site, several things happen. Some are more obvious than others.
  • You get a message that you are about to enter a secure site and that anything transmitted from now on will be encrypted. If you do not see this message, it is probably because you have seen it before, and clicked a box not to show this warning in the future.
  • Click “OK” to enter our secure site. On the top of your screen, you will notice that the “http” now has an “s” appended to it. This stands for “secure” and indicates that we are using a secure protocol called Secure Sockets Layer (SSL).
  • Depending upon your browser, at the bottom of your screen you may notice that a small locked padlock symbol has appeared on the status bar. This padlock is always shown locked for secure sites. For non-secure sites, the padlock may appear either unlocked or not at all.

To the top

What is cache and how do I minimize its size?
To improve access to frequently requested Web pages, browsers typically store recently displayed pages to your hard disk in a special area called “cache.” This can allow others to see your proprietary data if they have access to your computer. Minimize cache size if you want to prevent others who have access to your computer from seeing your proprietary data. The procedure for minimizing cache size, clearing cache, or turning it off depends upon your browser. Check your browser’s help menu for instructions.

To the top

How do I really know who it is at the other end of the connection?
The process of pretending to be a person (or Web site) which you are not is known as ‘masquerading.’ The process of discovering whether the site accessed is the site you believe it to be is known as ‘authentication.’ A ‘certificate’ is the way our Web site tells you, in a secure and trusted way, who we are. We use a certificate to authenticate our Web site to you. In this way, you are assured that you are connecting to the Web site that you think we are. The browser knows it is connected to the correct site after it validates the certificate authority, decrypts a coded signature, verifies the domain (Web site) name, and checks the expiration date.

To the top

Who authenticates your certificate and what does it show?
Depending upon your browser and browser version, a padlock symbol may appear in the status bar at the bottom of your screen or elsewhere on your screen. Double-clicking the padlock symbol will display the certificate properties. The most important properties are the issuer (Certificate Authority or CA), expiration date, security protocol, and encryption level. Clicking on ‘issuer’ (your browser’s format may differ) shows that we employ DigiCert to ensure that we are who we say we are. Clicking on ‘security protocol’ reveals that we use Secure Socket Layer (SSL) 3.0. Clicking on ‘encryption level’ shows you that we use a ‘High’ (128-bit) level of encryption. You may also click on the DigiCert logo on our Welcome screen to validate that we use a trusted CA.

To the top

How do I know if a certificate is invalid or forged?
Browsers recognize all major trusted certificate authorities, and will warn us if the authentication was provided by an unknown or untrusted provider. For example, upon connecting to a Web site, Internet Explorer (depending upon the version) may display the following dialog:

This page requires a secure connection which includes server authentication. The Certificate Issuer for this site is untrusted or unknown. Do you wish to proceed? Yes | No | View Certificate | More info

If a certificate is issued by a certification authority which the browser does not recognize, and a dialog similar to the one shown above appears, then be extremely careful about using the Web site any further.

To the top

What browsers work best with the e-forms system?
To use the MIFORMS Web site, you must use a Web browser that supports Secure Sockets Layers (SSL) version 3 protocol with 128-bit strong encryption capability and JavaScript enabled. The latest versions of all modern direct-downloaded browsers meet the necessary criteria.

To the top

What are ‘sockets’? What is Secure Sockets Layers (SSL) and why is the version important?
Different sockets are used for different types of data. Web browsers use socket ‘80’ which normally contains unencrypted data that can be monitored by an unauthorized party.

To the top

What is Secure Sockets Layer (SSL)?
As its name implies, Secure Sockets Layer (SSL) secures the sockets that your data travels through. It provides authentication and encryption services. Although SSL was initially designed by Netscape (now defunct), it is now supported by all popular Web browsers and servers. It has become the accepted standard method of providing security and is used by banks and credit card companies. Although your Web browser already has SSL built into it, SSL is only active when the Web page you are viewing supports its use. See ‘How can I ensure my data is secure?’.

To the top

Why is the Secure Sockets Layer (SSL) version important?
Secure Sockets Layer (SSL) version 3 supports 128-bit strong encryption. Anything less is inadequate. The latest versions of all direct-downloaded modern browsers meet the necessary criteria.

To the top

How do I enable JavaScript?
Internet Explorer: Pull down the ‘Tools’ menu and choose ‘Internet Options.’ The ‘Internet Options’ dialog box appears. Click the ‘Security’ tab. Click the ‘Internet’ Web content zone. Click the ‘Custom level…’ button. Scroll down and locate the Level 1 heading labeled ‘Scripting’ and the Level 2 heading labeled ‘Active scripting’. Click the ‘Enable’ radio button. Click the OK button to close the ‘Security Settings’ window then click the OK button to close the ‘Internet Options’ window.

For all other browser, check your browser’s help menu for instructions.

To the top

What is 128-bit strong encryption?
128-bit strong encryption prevents your proprietary information from being read by others on the Internet while it is being transmitted between your Web browser and the MIFORMS Web site.

To the top

How do I know if I have 128-bit encryption?
The latest versions of all direct-downloaded modern browsers have 128-bit encryption. Internet Explorer supports 128-bit encryption from way on back at version 4.0.

Because 128-bit encryption technology cannot be exported, do international versions of Netscape and Internet Explorer operate at lower levels of encryption?
This is a common misconception. According to law, exported versions of browsers cannot initiate a request for 128-bit encryption for the current communications session. Requesting such a session would require that 128-bit encryption technology be exported.

Resident on our server is a DigiCert Secure Site 128-bit encryption certificate. Suppose that an export version of a browser employing 56-bit encryption resides on the user’s computer. The communications session proceeds as follows:

  1. The user’s computer opens a line of communication with our server.
  2. The user’s computer asks our server permission to use a 56-bit encryption protocol.
  3. Our server refuses the request since it is configured to use only a high-security 128-bit encryption protocol.
  4. The DigiCert certificate intercepts this refusal and counter proposes a 128-bit encryption protocol.
  5. 5. The user’s computer receives the proposal for 128-bit encryption and accepts. Until the user leaves our Web site, encryption occurs at the high-security 128-bit level.

To the top

What do you mean by ‘direct-downloaded browsers’ and where can I get them?
If you are using a Web browser provided by your Internet service provider or on-line service, the full security capabilities of MIFORMS may not be utilized. A few examples of service providers are America OnLine, Prodigy, CompuServe, and The Microsoft Network. Direct-downloaded browsers that meet MIFORMS security requirements are available from the Web sites of Internet Explorer, FireFox, Chrome, Safari, and Opera.

To the top

Do you use cookies?
At this time, cookies are not required to access and use our Web site.

 

 
Home | Help | Feedback | FAQ