Vault 7: Projects

This publication series is about specific projects related to the Vault 7 main publication.
SECRET//20350112
Cherry Bomb Program Cherry Blossom System Requirements Specification Document
3 (U) Architecture and Definitions
(U) This section discusses the architecture of the Cherry Blossom system, and defines a number
of terms used throughout the document. For a more complete system description, see the Cherry
Blossom User’s Manual [CDRL 12]
(U) The architecture of the Cherry Blossom system is shown below in Figure 1. Red boxes are
Cherry Blossom components.
(U) Listed are definitions of system components and common terminology used throughout this
document:
• (S) Flytrap – a wireless access point (AP), router, or other device that has been implanted
with Cherry Blossom firmware. Flytraps execute Missions to detect and exploit Targets
• (U) Command Post (Cherry Tree or CT) – server/software that manages:
o Handling and storage of Flytrap Missions
o Handling and storage of Flytrap status
o Handling, storage, and further distribution of Flytrap Alerts
• (U) Remote Terminal (CherryWeb or CW) – browser-based interface that allows Sponsor
users to view system status, configure the system, view target activity, and plan/assign
Missions
• (U) Point of Presence (PoP) or Listening Post (LP) – relay that forwards communication
between a Flytrap and the Cherry Tree
• (U) User – a person with access to the Cherry Web Remote Terminal. Users, for example,
can log into CW, plan and assign Missions, view system status, etc.
SECRET//20350112
6
Figure 1: Cherry Blossom Architecture (U)