Javelin Encryption Server
Release 2.3 3/5/2001 (Supports SGA MACS system)
The Javelin Encryption Server (JES) is a Java application that is provided with the
Secure Javelin series of terminal emulation applets from Minisoft. JES resides on a
machine at the host site, and performs the translation of the encrypted data coming
from Javelin Applets across the Internet, to clear text for the host computer.
The following information assumes familiarity with network security concepts and
implementation, including an understanding of firewalls, proxy servers, IP addresses
and masks and TCP/IP ports. Javelin and JES will ensure encryption of data passing between
the users and the JES machine; it will not guarantee protection of your host machines
from outside access if they are not themselves properly isolated from the Internet by
proxy servers or other security devices.
The Javelin applet initially connects to the machine that is running JES. This machine
must be accessible from the Internet. The connection is made to the IP address of that
machine, and to a TCP/IP port that you specify. This port and address are specified
in the html code that invokes Javelin. JES in turn makes a connection to the host machine,
also using a port that you specify; this will normally be 23 for Telnet or 1570 for
The JES machine and the host must be configured in such a way that traffic passing
between JES and the host is not visible on the Internet. It is up to you how you achieve
this. Typically this would be done by using a proxy server, router or bridge to deny
access to the ports (e.g. 23 or 1570) and/or IP address or MAC address of the host.
JES requires a computer with access to both the Internet and the host (see above)
with a Java Runtime environment installed. This can be obtained for Windows and Solaris
environments by downloading it from
Solaris environments, download a copy of the java.exe file from
and select the latest release of the Java Development Kit.
Copy the jes.jar file to the same directory where the Java Run-time environment is
installed. In most cases it is as follows:
Since JES is a Java Application, it is executed by the Java Runtime programs:
1. From the START Menu select Run. The run command line is:
java -jar Jes.jar [hostname]
To set up an Icon to run the JES machine instead of using the Run Command, do the
1. Create a Shortcut with the following Properties:
"C:\Program Files\JavaSoft\JRE\1.2\bin\java.exe" -jar Jes.jar [hostname] [hostport]
[hostname] Name or IP address of the host computer (e.g. the HP e3000).
[hostport] TCP/IP port that the host is connected to (e.g. 23 or 1570).
[clientport] is the TCP/IP port that JES is listening on and connects to. This port
is specified in the configuration file.
The final step is to configure your web page to instruct the user’s browser to run
Java and run the Secure Javelin, connecting to the IP address and Port of the JES machine
as the Host computer.
Instructions for configuring the web page are the same as for the non-secure version
of Javelin and are provided separately.
The HTML file must use the configuration file that has the IP address of the JES
machine as the Host IP address or Node name.
The reference to the J92.jar and J92.cab in the HTML needs to have the secure J92sec.jar