Vault 7: Projects

This publication series is about specific projects related to the Vault 7 main publication.
SECRET//20350112
Cherry Bomb Program Cherry Blossom System Requirements Specification Document
4 (U) Cherry Blossom General System Requirements
(U) This section enumerates the general requirements of the Cherry Blossom system for the
contract year 2011-2012. These are broad requirements intended to give general guidance
to system design and development.
4.1 (U) Cherry Tree Requirements
(U) Two major Cherry Tree enhancements shall be provided in this contract period: a new
algorithm for selecting LPs, and the capability to edit active Flytrap missions. In addition,
changes to the Windex connection logic and a mobile VPN server capability shall also be
provided. Depending upon difficulties encountered, these enhancements shall be delivered in
one release or spread across two releases.
4.1.1 (S) Algorithm for Selecting LPs
(S) Cherry Tree shall provide the capability to disable use of the default (firmware embedded)
LP for a deployed Flytrap. This disable operation shall be in the form of an operator-
configurable mission flag which specifies either to use or not to use the embedded beacon
address. Cherry Web shall force a user to provide a PoP/LP in a mission if the default LP is to
be disabled in the mission.
4.1.2 (S) Windex Connection
(S) The current Windex connection logic shall be removed from the Cherry Tree code. This
change shall involve the removal of the “Administer->Windex” and the “Plan->Exploits-
>Windex” pages.
(S) Cherry Tree shall continue to show Windex information (redirect status, client IP, original
Web page) received from Flytraps.
4.1.3 (U) Mobile VPN Server
(U) Cherry Tree shall provide a mobile VPN server capability using the Fedora Core 10
operating system.
(U) The current FAT VPN tests shall also be performed on the mobile VPN server.
(U) The proper internet setup (e.g. VPNC), installation, and auto start capability shall be tested
on the mobile VPN server.
4.1.4 (U) Target Decks with Persistent Actions
(U) Cherry Tree shall improve the ability to persist Target Actions in Missions when an
associated Target Deck is changed. If new Targets are added to a Target Deck via the
SECRET//20350112
8