Data backup method, device, and system

WO2026137932A1PCT designated stage Publication Date: 2026-07-02HUAWEI TECH CO LTD

Patent Information

Authority / Receiving Office
WO · WO
Patent Type
Applications
Current Assignee / Owner
HUAWEI TECH CO LTD
Filing Date
2025-08-27
Publication Date
2026-07-02

AI Technical Summary

Technical Problem

There is a lack of effective ransomware protection solutions in the current technology, especially for the Linux operating system. Furthermore, existing solutions rely on the accuracy of ransomware detection or generate a large amount of backup data, resulting in wasted system resources and difficulties in data recovery.

Method used

By extending the fanotify function, the kernel module monitors file system write operations in kernel mode and performs data backup in conjunction with security processes in user mode. Backup is only triggered when untrusted processes or protected files are written to, thus decoupling data backup from ransomware detection, reducing the amount of backup data, and improving system stability.

Benefits of technology

It achieves comprehensive data backup of the Linux operating system, reduces the risk of system crashes, saves storage resources, and automatically restores data after ransomware detection, thereby improving data security and system stability.

✦ Generated by Eureka AI based on patent content.

Smart Images

  • Figure CN2025117166_02072026_PF_FP_ABST
    Figure CN2025117166_02072026_PF_FP_ABST
Patent Text Reader

Abstract

The present application relates to the technical field of computers, and provides a data backup method, a device, and a system. The method is applied to a computer device using a Linux operating system; a kernel module running in a kernel mode extends fanotify functionality, to monitor whether there is a process executing a write operation on an existing file in a file system; a security process running in a user mode executes a data backup procedure on the file on which the write operation is monitored by the kernel module; and interaction between the kernel mode and the user mode is implemented on the basis of fanotify, so that the situation of jamming of the Linux operating system can be reduced. In addition, in the present application, data backup of an existing file is triggered on the basis of a write operation on the existing file, and the data backup is performed on the existing file only when an execution entity of the write operation is an untrusted process and / or an execution object of the write operation is a protected file, thereby comprehensively considering the comprehensiveness of data backup and the amount of backup data.
Need to check novelty before this filing date? Find Prior Art