Hubbry Logo
BackupBackupMain
Open search
Backup
Community hub
Backup
logo
7 pages, 0 posts
0 subscribers
Be the first to start a discussion here.
Be the first to start a discussion here.
Contribute something
Backup
Backup
Backup
View on Wikipedia
from Wikipedia

In information technology, a backup, or data backup is a copy of computer data taken and stored elsewhere so that it may be used to restore the original after a data loss event. The verb form, referring to the process of doing so, is "back up", whereas the noun and adjective form is "backup".[1] Backups can be used to recover data after its loss from data deletion or corruption, or to recover data from an earlier time.[2] Backups provide a simple form of IT disaster recovery; however not all backup systems are able to reconstitute a computer system or other complex configuration such as a computer cluster, active directory server, or database server.[3]

A backup system contains at least one copy of all data considered worth saving. The data storage requirements can be large. An information repository model may be used to provide structure to this storage. There are different types of data storage devices used for copying backups of data that is already in secondary storage onto archive files.[note 1][4] There are also different ways these devices can be arranged to provide geographic dispersion,[5] data security, and portability.

Data is selected, extracted, and manipulated for storage. The process can include methods for dealing with live data, including open files, as well as compression, encryption, and de-duplication. Additional techniques apply to enterprise client-server backup. Backup schemes may include dry runs that validate the reliability of the data being backed up. There are limitations[6] and human factors involved in any backup scheme.

Storage

[edit]

A backup strategy requires an information repository, "a secondary storage space for data"[7] that aggregates backups of data "sources". The repository could be as simple as a list of all backup media (DVDs, etc.) and the dates produced, or could include a computerized index, catalog, or relational database.

3-2-1 Backup Rule

[edit]

The backup data needs to be stored, requiring a backup rotation scheme,[4] which is a system of backing up data to computer media that limits the number of backups of different dates retained separately, by appropriate re-use of the data storage media by overwriting of backups no longer needed. The scheme determines how and when each piece of removable storage is used for a backup operation and how long it is retained once it has backup data stored on it. The 3-2-1 rule can aid in the backup process. It states that there should be at least 3 copies of the data, stored on 2 different types of storage media, and one copy should be kept offsite, in a remote location (this can include cloud storage). 2 or more different media should be used to eliminate data loss due to similar reasons (for example, optical discs may tolerate being underwater while LTO tapes may not, and SSDs cannot fail due to head crashes or damaged spindle motors since they do not have any moving parts, unlike hard drives). An offsite copy protects against fire, theft of physical media (such as tapes or discs) and natural disasters like floods and earthquakes. Physically protected hard drives are an alternative to an offsite copy, but they have limitations like only being able to resist fire for a limited period of time, so an offsite copy still remains as the ideal choice.

Because there is no perfect storage, many backup experts recommend maintaining a second copy on a local physical device, even if the data is also backed up offsite.[8][9][10][11]

Backup methods

[edit]

Unstructured

[edit]

An unstructured repository may simply be a stack of tapes, DVD-Rs or external HDDs with minimal information about what was backed up and when. This method is the easiest to implement, but unlikely to achieve a high level of recoverability as it lacks automation.

Full only/System imaging

[edit]

A repository using this backup method contains complete source data copies taken at one or more specific points in time. Copying system images, this method is frequently used by computer technicians to record known good configurations. However, imaging[12] is generally more useful as a way of deploying a standard configuration to many systems rather than as a tool for making ongoing backups of diverse systems.

Incremental

[edit]

An incremental backup stores data changed since a reference point in time. Duplicate copies of unchanged data are not copied. Typically a full backup of all files is made once or at infrequent intervals, serving as the reference point for an incremental repository. Subsequently, a number of incremental backups are made after successive time periods. Restores begin with the last full backup and then apply the incrementals.[13] Some backup systems[14] can create a synthetic full backup from a series of incrementals, thus providing the equivalent of frequently doing a full backup. When done to modify a single archive file, this speeds restores of recent versions of files.

Near-CDP

[edit]

Continuous Data Protection (CDP) refers to a backup that instantly saves a copy of every change made to the data. This allows restoration of data to any point in time and is the most comprehensive and advanced data protection.[15] Near-CDP backup applications—often marketed as "CDP"—automatically take incremental backups at a specific interval, for example every 15 minutes, one hour, or 24 hours. They can therefore only allow restores to an interval boundary.[15] Near-CDP backup applications use journaling and are typically based on periodic "snapshots",[16] read-only copies of the data frozen at a particular point in time.

Near-CDP (except for Apple Time Machine)[17] intent-logs every change on the host system,[18] often by saving byte or block-level differences rather than file-level differences. This backup method differs from simple disk mirroring in that it enables a roll-back of the log and thus a restoration of old images of data. Intent-logging allows precautions for the consistency of live data, protecting self-consistent files but requiring applications "be quiesced and made ready for backup."

Near-CDP is more practicable for ordinary personal backup applications, as opposed to true CDP, which must be run in conjunction with a virtual machine[19][20] or equivalent[21] and is therefore generally used in enterprise client-server backups.

Software may create copies of individual files such as written documents, multimedia projects, or user preferences, to prevent failed write events caused by power outages, operating system crashes, or exhausted disk space, from causing data loss. A common implementation is an appended ".bak" extension to the file name.

Reverse incremental

[edit]

A Reverse incremental backup method stores a recent archive file "mirror" of the source data and a series of differences between the "mirror" in its current state and its previous states. A reverse incremental backup method starts with a non-image full backup. After the full backup is performed, the system periodically synchronizes the full backup with the live copy, while storing the data necessary to reconstruct older versions. This can either be done using hard links—as Apple Time Machine does, or using binary diffs.

Differential

[edit]

A differential backup saves only the data that has changed since the last full backup. This means a maximum of two backups from the repository are used to restore the data. However, as time from the last full backup (and thus the accumulated changes in data) increases, so does the time to perform the differential backup. Restoring an entire system requires starting from the most recent full backup and then applying just the last differential backup.

A differential backup copies files that have been created or changed since the last full backup, regardless of whether any other differential backups have been made since, whereas an incremental backup copies files that have been created or changed since the most recent backup of any type (full or incremental). Changes in files may be detected through a more recent date/time of last modification file attribute, and/or changes in file size. Other variations of incremental backup include multi-level incrementals and block-level incrementals that compare parts of files instead of just entire files.

Storage media

[edit]
From left to right, a DVD disc in plastic cover, a USB flash drive and an external hard drive

Regardless of the repository model that is used, the data has to be copied onto an archive file data storage medium. The medium used is also referred to as the type of backup destination.

Magnetic tape

[edit]

Magnetic tape was for a long time the most commonly used medium for bulk data storage, backup, archiving, and interchange. It was previously a less expensive option, but this is no longer the case for smaller amounts of data.[22] Tape is a sequential access medium, so the rate of continuously writing or reading data can be very fast. While tape media itself has a low cost per space, tape drives are typically dozens of times as expensive as hard disk drives and optical drives.

Many tape formats have been proprietary or specific to certain markets like mainframes or a particular brand of personal computer. By 2014 LTO had become the primary tape technology.[23] The other remaining viable "super" format is the IBM 3592 (also referred to as the TS11xx series). The Oracle StorageTek T10000 was discontinued in 2016.[24]

Hard disk

[edit]

The use of hard disk storage has increased over time as it has become progressively cheaper. Hard disks are usually easy to use, widely available, and can be accessed quickly.[23] However, hard disk backups are close-tolerance mechanical devices and may be more easily damaged than tapes, especially while being transported.[25] In the mid-2000s, several drive manufacturers began to produce portable drives employing ramp loading and accelerometer technology (sometimes termed a "shock sensor"),[26][27] and by 2010 the industry average in drop tests for drives with that technology showed drives remaining intact and working after a 36-inch non-operating drop onto industrial carpeting.[28] Some manufacturers also offer 'ruggedized' portable hard drives, which include a shock-absorbing case around the hard disk, and claim a range of higher drop specifications.[28][29][30] Over a period of years the stability of hard disk backups is shorter than that of tape backups.[24][31][25]

External hard disks can be connected via local interfaces like SCSI, USB, FireWire, or eSATA, or via longer-distance technologies like Ethernet, iSCSI, or Fibre Channel. Some disk-based backup systems, via Virtual Tape Libraries or otherwise, support data deduplication, which can reduce the amount of disk storage capacity consumed by daily and weekly backup data.[32][33][34]

Optical storage

[edit]
Optical discs are not vulnerable to water, making them likely to survive a flood disaster.
See also: Optical media preservation

Optical storage uses lasers to store and retrieve data. Recordable CDs, DVDs, and Blu-ray Discs are commonly used with personal computers and are generally cheap. The capacities and speeds of these discs have typically been lower than hard disks or tapes. Advances in optical media may shrink that gap in the future.[35][36]

Potential future data losses caused by gradual media degradation can be predicted by measuring the rate of correctable minor data errors, of which consecutively too many increase the risk of uncorrectable sectors. Support for error scanning varies among optical drive vendors.[37]

Many optical disc formats are WORM type, which makes them useful for archival purposes since the data cannot be changed in any way, including by user error and by malware such as ransomware. Moreover, optical discs are not vulnerable to head crashes, magnetism, imminent water ingress or power surges; and, a fault of the drive typically just halts the spinning.

Optical media is modular; the storage controller is not tied to media itself like with hard drives or flash storage (→flash memory controller), allowing it to be removed and accessed through a different drive. However, recordable media may degrade earlier under long-term exposure to light.[38]

Some optical storage systems allow for cataloged data backups without human contact with the discs, allowing for longer data integrity. A French study in 2008 indicated that the lifespan of typically-sold CD-Rs was 2–10 years,[39] but one manufacturer later estimated the longevity of its CD-Rs with a gold-sputtered layer to be as high as 100 years.[40] Sony's proprietary Optical Disc Archive[23] can in 2016 reach a read rate of 250 MB/s.[41]

Solid-state drive

[edit]

Solid-state drives (SSDs) use integrated circuit assemblies to store data. Flash memory, thumb drives, USB flash drives, CompactFlash, SmartMedia, Memory Sticks, and Secure Digital card devices are relatively expensive for their low capacity, but convenient for backing up relatively low data volumes. A solid-state drive does not contain any movable parts, making it less susceptible to physical damage, and can have huge throughput of around 500 Mbit/s up to 6 Gbit/s. Available SSDs have become more capacious and cheaper.[42][29] Flash memory backups are stable for fewer years than hard disk backups.[24]

Remote backup service

[edit]

Remote backup services or cloud backups involve service providers storing data offsite. This has been used to protect against events such as fires, floods, or earthquakes which could destroy locally stored backups.[43] Cloud-based backup (through services like or similar to Google Drive, and Microsoft OneDrive) provides a layer of data protection.[25] However, the users must trust the provider to maintain the privacy and integrity of their data, with confidentiality enhanced by the use of encryption. Because speed and availability are limited by a user's online connection,[25] users with large amounts of data may need to use cloud seeding and large-scale recovery.

Management

[edit]

Various methods can be used to manage backup media, striking a balance between accessibility, security and cost. These media management methods are not mutually exclusive and are frequently combined to meet the user's needs. Using on-line disks for staging data before it is sent to a near-line tape library is a common example.[44][45]

Online

[edit]

Online backup storage is typically the most accessible type of data storage, and can begin a restore in milliseconds. An internal hard disk or a disk array (maybe connected to SAN) is an example of an online backup. This type of storage is convenient and speedy, but is vulnerable to being deleted or overwritten, either by accident, by malevolent action, or in the wake of a data-deleting virus payload.

Near-line

[edit]

Nearline storage is typically less accessible and less expensive than online storage, but still useful for backup data storage. A mechanical device is usually used to move media units from storage into a drive where the data can be read or written. Generally it has safety properties similar to on-line storage. An example is a tape library with restore times ranging from seconds to a few minutes.

Off-line

[edit]

Off-line storage requires some direct action to provide access to the storage media: for example, inserting a tape into a tape drive or plugging in a cable. Because the data is not accessible via any computer except during limited periods in which they are written or read back, they are largely immune to on-line backup failure modes. Access time varies depending on whether the media are on-site or off-site.

Off-site data protection

[edit]

Backup media may be sent to an off-site vault to protect against a disaster or other site-specific problem. The vault can be as simple as a system administrator's home office or as sophisticated as a disaster-hardened, temperature-controlled, high-security bunker with facilities for backup media storage. A data replica can be off-site but also on-line (e.g., an off-site RAID mirror).

Backup site

[edit]

A backup site or disaster recovery center is used to store data that can enable computer systems and networks to be restored and properly configured in the event of a disaster. Some organisations have their own data recovery centres, while others contract this out to a third-party. Due to high costs, backing up is rarely considered the preferred method of moving data to a DR site. A more typical way would be remote disk mirroring, which keeps the DR data as up to date as possible.

Selection and extraction of data

[edit]

A backup operation starts with selecting and extracting coherent units of data. Most data on modern computer systems is stored in discrete units, known as files. These files are organized into filesystems. Deciding what to back up at any given time involves tradeoffs. By backing up too much redundant data, the information repository will fill up too quickly. Backing up an insufficient amount of data can eventually lead to the loss of critical information.[46]

Files

[edit]
  • Copying files: Making copies of files is the simplest and most common way to perform a backup. A means to perform this basic function is included in all backup software and all operating systems.
  • Partial file copying: A backup may include only the blocks or bytes within a file that have changed in a given period of time. This can substantially reduce needed storage space, but requires higher sophistication to reconstruct files in a restore situation. Some implementations require integration with the source file system.
  • Deleted files: To prevent the unintentional restoration of files that have been intentionally deleted, a record of the deletion must be kept.
  • Versioning of files: Most backup applications, other than those that do only full only/System imaging, also back up files that have been modified since the last backup. "That way, you can retrieve many different versions of a given file, and if you delete it on your hard disk, you can still find it in your [information repository] archive."[4]

Filesystems

[edit]
  • Filesystem dump: A copy of the whole filesystem in block-level can be made. This is also known as a "raw partition backup" and is related to disk imaging. The process usually involves unmounting the filesystem and running a program like dd (Unix).[47] Because the disk is read sequentially and with large buffers, this type of backup can be faster than reading every file normally, especially when the filesystem contains many small files, is highly fragmented, or is nearly full. But because this method also reads the free disk blocks that contain no useful data, this method can also be slower than conventional reading, especially when the filesystem is nearly empty. Some filesystems, such as XFS, provide a "dump" utility that reads the disk sequentially for high performance while skipping unused sections. The corresponding restore utility can selectively restore individual files or the entire volume at the operator's choice.[48]
  • Identification of changes: Some filesystems have an archive bit for each file that says it was recently changed. Some backup software looks at the date of the file and compares it with the last backup to determine whether the file was changed.
  • Versioning file system: A versioning filesystem tracks all changes to a file. The NILFS versioning filesystem for Linux is an example.[49]

Live data

[edit]

Files that are actively being updated present a challenge to back up. One way to back up live data is to temporarily quiesce them (e.g., close all files), take a "snapshot", and then resume live operations. At this point the snapshot can be backed up through normal methods.[50] A snapshot is an instantaneous function of some filesystems that presents a copy of the filesystem as if it were frozen at a specific point in time, often by a copy-on-write mechanism. Snapshotting a file while it is being changed results in a corrupted file that is unusable. This is also the case across interrelated files, as may be found in a conventional database or in applications such as Microsoft Exchange Server.[16] The term fuzzy backup can be used to describe a backup of live data that looks like it ran correctly, but does not represent the state of the data at a single point in time.[51]

Backup options for data files that cannot be or are not quiesced include:[52]

  • Open file backup: Many backup software applications undertake to back up open files in an internally consistent state.[53] Some applications simply check whether open files are in use and try again later.[50] Other applications exclude open files that are updated very frequently.[54] Some low-availability interactive applications can be backed up via natural/induced pausing.
  • Interrelated database files backup: Some interrelated database file systems offer a means to generate a "hot backup"[55] of the database while it is online and usable. This may include a snapshot of the data files plus a snapshotted log of changes made while the backup is running. Upon a restore, the changes in the log files are applied to bring the copy of the database up to the point in time at which the initial backup ended.[56] Other low-availability interactive applications can be backed up via coordinated snapshots. However, genuinely-high-availability interactive applications can be only be backed up via Continuous Data Protection.

Metadata

[edit]

Not all information stored on the computer is stored in files. Accurately recovering a complete system from scratch requires keeping track of this non-file data too.[57]

  • System description: System specifications are needed to procure an exact replacement after a disaster.
  • Boot sector: The boot sector can sometimes be recreated more easily than saving it. It usually isn't a normal file and the system won't boot without it.
  • Partition layout: The layout of the original disk, as well as partition tables and filesystem settings, is needed to properly recreate the original system.
  • File metadata: Each file's permissions, owner, group, ACLs, and any other metadata need to be backed up for a restore to properly recreate the original environment.
  • System metadata: Different operating systems have different ways of storing configuration information. Microsoft Windows keeps a registry of system information that is more difficult to restore than a typical file.

Manipulation of data and dataset optimization

[edit]

It is frequently useful or required to manipulate the data being backed up to optimize the backup process. These manipulations can improve backup speed, restore speed, data security, media usage and/or reduced bandwidth requirements.

Automated data grooming

[edit]

Out-of-date data can be automatically deleted, but for personal backup applications—as opposed to enterprise client-server backup applications where automated data "grooming" can be customized—the deletion[note 2][58][59] can at most[60] be globally delayed or be disabled.[61]

Compression

[edit]

Various schemes can be employed to shrink the size of the source data to be stored so that it uses less storage space. Compression is frequently a built-in feature of tape drive hardware.[62]

Deduplication

[edit]

Redundancy due to backing up similarly configured workstations can be reduced, thus storing just one copy. This technique can be applied at the file or raw block level. This potentially large reduction[62] is called deduplication. It can occur on a server before any data moves to backup media, sometimes referred to as source/client side deduplication. This approach also reduces bandwidth required to send backup data to its target media. The process can also occur at the target storage device, sometimes referred to as inline or back-end deduplication.

Duplication

[edit]

Sometimes backups are duplicated to a second set of storage media. This can be done to rearrange the archive files to optimize restore speed, or to have a second copy at a different location or on a different storage medium—as in the disk-to-disk-to-tape capability of Enterprise client-server backup.

Encryption

[edit]

High-capacity removable storage media such as backup tapes present a data security risk if they are lost or stolen.[63] Encrypting the data on these media can mitigate this problem, however encryption is a CPU intensive process that can slow down backup speeds, and the security of the encrypted backups is only as effective as the security of the key management policy.[62]

Multiplexing

[edit]

When there are many more computers to be backed up than there are destination storage devices, the ability to use a single storage device with several simultaneous backups can be useful.[64] However cramming the scheduled backup window via "multiplexed backup" is only used for tape destinations.[64]

Refactoring

[edit]

The process of rearranging the sets of backups in an archive file is known as refactoring. For example, if a backup system uses a single tape each day to store the incremental backups for all the protected computers, restoring one of the computers could require many tapes. Refactoring could be used to consolidate all the backups for a single computer onto a single tape, creating a "synthetic full backup". This is especially useful for backup systems that do incrementals forever style backups.

Staging

[edit]

Sometimes backups are copied to a staging disk before being copied to tape.[64] This process is sometimes referred to as D2D2T, an acronym for Disk-to-disk-to-tape. It can be useful if there is a problem matching the speed of the final destination device with the source device, as is frequently faced in network-based backup systems. It can also serve as a centralized location for applying other data manipulation techniques.

Objectives

[edit]
  • Recovery point objective (RPO): The point in time that the restarted infrastructure will reflect, expressed as "the maximum targeted period in which data (transactions) might be lost from an IT service due to a major incident". Essentially, this is the roll-back that will be experienced as a result of the recovery. The most desirable RPO would be the point just prior to the data loss event. Making a more recent recovery point achievable requires increasing the frequency of synchronization between the source data and the backup repository.[65]
  • Recovery time objective (RTO): The amount of time elapsed between disaster and restoration of business functions.[66]
  • Data security: In addition to preserving access to data for its owners, data must be restricted from unauthorized access. Backups must be performed in a manner that does not compromise the original owner's undertaking. This can be achieved with data encryption and proper media handling policies.[67]
  • Data retention period: Regulations and policy can lead to situations where backups are expected to be retained for a particular period, but not any further. Retaining backups after this period can lead to unwanted liability and sub-optimal use of storage media.[67]
  • Checksum or hash function validation: Applications that back up to tape archive files need this option to verify that the data was accurately copied.[68]
  • Backup process monitoring: Enterprise client-server backup applications need a user interface that allows administrators to monitor the backup process, and proves compliance to regulatory bodies outside the organization; for example, an insurance company in the USA might be required under HIPAA to demonstrate that its client data meet records retention requirements.[69]
  • User-initiated backups and restores: To avoid or recover from minor disasters, such as inadvertently deleting or overwriting the "good" versions of one or more files, the computer user—rather than an administrator—may initiate backups and restores (from not necessarily the most-recent backup) of files or folders.

See also

[edit]

About backup

Related topics

Notes

[edit]

References

[edit]
[edit]
Revisions and contributorsEdit on WikipediaRead on Wikipedia

Backup

View on Grokipedia
from Grokipedia
A backup in refers to the process of creating and maintaining duplicate copies of , applications, or entire systems on a secondary storage device or , enabling recovery and restoration in the event of , corruption, hardware , or other disruptions. This practice is fundamental to data protection and disaster recovery, as it mitigates risks from human errors, cyberattacks, power outages, and , ensuring business continuity and minimizing downtime that can cost organizations millions per minute for mission-critical operations. Regular backups are recommended for all users, from individuals to enterprises, to safeguard critical information against irreversible loss. Backups employ diverse strategies tailored to needs like recovery time objectives (RTO) and recovery point objectives (RPO), including full backups that copy the entire ; incremental backups that capture only changes since the last backup; differential backups that record all changes since the last full backup; (CDP) for real-time replication; and bare-metal backups for complete system restoration. Storage media have evolved from tape drives—known for low cost and high capacity but slower access—to hard disk drives (HDDs), solid-state drives (SSDs), dedicated backup servers, and scalable , which offers remote accessibility and flexibility. Best practices, such as the 3-2-1 rule (three copies of data on two different types of media, with one stored offsite), enhance resilience against localized failures.

Fundamentals

Definition and Purpose

Backup refers to the process of creating copies of computer stored in a separate from the originals, enabling restoration in the event of , corruption, or disaster. This practice ensures that critical information remains accessible and recoverable, forming a foundational element of data protection strategies. Key concepts include , which involves maintaining multiple identical copies of to mitigate single points of failure, and , allowing restoration to a specific moment before an incident occurred. Backups integrate into the broader data lifecycle—encompassing creation, usage, archival, and deletion—by preserving and availability throughout these phases. The primary purposes of backups are to support disaster recovery, ensuring systems and data can be restored after events like hardware failures or ; to facilitate business continuity by minimizing operational downtime; and to meet requirements for and auditability. They also protect against human errors, such as accidental deletions, and cyber threats including and cyberattacks, which can encrypt or destroy data. Historically, data backups emerged in the 1950s with the advent of mainframe computers, initially relying on punch cards for data storage and processing before transitioning to magnetic tape systems like the IBM 726 introduced in 1952, which offered higher capacity and reliability. In 2025, amid explosive data growth driven by artificial intelligence, Internet of Things devices, and cloud computing, global data volume is estimated at 181 zettabytes, heightening the need for robust backup mechanisms to manage this scale and prevent irrecoverable losses.

Historical Development

The earliest forms of data backup in computing emerged in the 1940s and 1950s alongside vacuum tube-based systems, where punch cards and paper tape served as primary storage and archival media. By the 1930s, was already processing up to 10 million punch cards daily for handling, a practice that persisted into the and for and rudimentary backups in mainframe environments. , patented in 1928 but widely adopted by in the 1950s, revolutionized backup by enabling faster sequential access and greater capacity compared to paper-based methods, often inspired by adaptations from audio recording technologies like those in vacuum cleaners. These tapes became standard for archiving in the and , supporting the growing needs of early enterprise . In the 1970s and 1980s, backup practices advanced with the proliferation of minicomputers and the introduction of cartridge-based magnetic tape systems, such as IBM's 3480 format launched in 1984, which offered compact, high-density storage for mainframes and improved reliability over reel-to-reel tapes. The rise of personal computers and Unix systems in the late 1970s spurred software innovations; for instance, the Unix 'dump' utility appeared in Version 6 Unix around 1975 for filesystem-level backups, while 'tar' (tape archive) was introduced in Seventh Edition Unix in 1979 to bundle files for tape storage. By the 1980s and 1990s, hard disk drives became affordable for backups, shifting from tape-only workflows, and RAID (Redundant Array of Independent Disks) was conceptualized in 1987 by researchers at the University of California, Berkeley, providing fault-tolerant disk arrays that enhanced data protection through redundancy. Incremental backups, which capture only changes since the prior backup to reduce storage and time, gained traction during this era, with early implementations in Unix tools and a key patent for optimized incremental techniques filed in 1989. The marked a transition to disk-to-disk backups, driven by falling hard drive costs and the need for faster recovery; by the early decade, disk replaced tape as the preferred primary backup medium for many enterprises, enabling near-line storage for quicker access. further transformed backups, with VMware's ESX Server released in 2001 introducing bare-metal hypervisors that supported VM snapshots for point-in-time recovery without full system shutdowns. emerged as a milestone with Amazon S3's launch in 2006, offering scalable, offsite that began integrating with backup workflows for remote replication. , which eliminates redundant blocks to optimize storage, saw significant adoption starting around 2005, with Permabit Technology Corporation pioneering inline deduplication solutions for virtual tape libraries to address exploding volumes. From the 2010s onward, backups evolved to handle big data and hybrid cloud environments, incorporating features like automated orchestration across on-premises and cloud tiers for resilience against outages. The 2017 WannaCry ransomware attack, which encrypted data on over 200,000 systems worldwide, underscored vulnerabilities in traditional backups, prompting a surge in cyber-resilient strategies such as air-gapped and immutable storage to prevent tampering. In the 2020s, ransomware incidents escalated, with disclosed attacks rising 34% from 2020 to 2022, continuing through 2024 when 59% of organizations were affected, and into 2025. This has driven adoption of immutable backups that lock data versions against modification for a defined period. Trends now emphasize AI-optimized backups for predictive anomaly detection and zero-trust models integrated into storage, as highlighted in Gartner's 2025 Hype Cycle for Storage Technologies, which positions cyberstorage and AI-driven data management as maturing innovations for enhanced security and efficiency.

Backup Strategies and Rules

The 3-2-1 Backup Rule

The 3-2-1 backup rule serves as a foundational for and recoverability, recommending the maintenance of three total copies of critical data: the original production copy plus two backups. These copies must reside on two distinct types of storage media to guard against media-specific failures, such as disk crashes or tape degradation, while ensuring at least one copy is stored offsite or disconnected from the primary network to mitigate risks from physical disasters, , or localized cyberattacks. In light of escalating cyber threats, particularly that targets mutable backups, the rule has evolved by 2025 into the 3-2-1-1-0 framework. This extension incorporates an additional immutable or air-gapped copy—isolated via physical disconnection or unalterable storage policies—to prevent encryption or deletion by , alongside a mandate for zero recovery errors achieved through routine verification testing. Air-gapped solutions, such as offline tapes, or cloud-based isolated repositories enhance resilience by breaking the attack chain, ensuring clean restores even in sophisticated breach scenarios. This strategy offers a balanced approach to data protection, optimizing costs through minimal while preserving accessibility for rapid recovery and providing robust safeguards against diverse modes. For instance, a typical might involve the original on a local server disk, a backup on external hard drives or , and an offsite copy in , thereby distributing across hardware types and locations without requiring excessive resources. Implementing the rule begins with evaluating criticality to focus efforts on high-value assets, such as business records or application , using tools like assessments to classify . Next, choose media diversity based on factors like capacity, speed, and compatibility—ensuring no single failure mode affects all copies—while automating backups via software that supports multiple destinations. Finally, establish offsite storage through geographic separation, such as remote centers or compliant providers, to confirm isolation from primary site vulnerabilities. According to the 2025 State of Backup and Recovery Report, variants of the rule are increasingly adopted amid rising threats, with only 50% of organizations currently aligning actual recovery times with their RTO targets, underscoring the rule's role in enhancing overall resilience.

Rotation and Retention Policies

Rotation schemes define the systematic cycling of backup media or storage to ensure regular data protection while minimizing resource use. One widely adopted approach is the Grandfather-Father-Son (GFS) model, which organizes backups into hierarchical cycles: daily incremental backups (sons) capture changes from the previous day, weekly full backups (fathers) provide a comprehensive snapshot at the end of each week, and monthly full backups (grandfathers) serve as long-term anchors retained for extended periods, such as 12 months. This scheme balances short-term recovery needs with archival efficiency by rotating media sets, typically using separate tapes or disks for each level to avoid overwrites. Another rotation strategy is the scheme, inspired by the , which optimizes incremental chaining for extended retention with limited media. In this method, backups occur on a recursive schedule—every other day on the first media set, every fourth day on the second, every eighth on the third, and so on—allowing up to 2^n - 1 days of coverage with n media sets while ensuring each backup depends only on the prior full or relevant incremental for restoration. This approach reduces media wear on frequently used sets and supports efficient space utilization in environments with high daily change rates. Retention policies govern how long backups are kept before deletion or archiving, primarily driven by to prevent and support audits. For instance, under the General Data Protection Regulation (GDPR) in the , organizations must retain only as long as necessary for the specified purpose, with retention periods determined by the data's purpose and applicable sector-specific or national laws (e.g., 5-10 years for certain financial records under related regulations). Similarly, the Health Insurance Portability and Accountability Act (HIPAA) in the United States mandates retention of documentation for at least six years from creation or the last effective date. To enforce immutability during these periods, (WORM) storage is employed, where data can be written once but not altered or deleted until the retention term expires, safeguarding against or accidental overwrites. Several factors influence the design of rotation and retention policies, including the assessed value of the data, potential legal holds that extend retention beyond standard periods, and the ongoing costs of storage infrastructure. High-value data, such as intellectual property, may warrant longer retention to mitigate recovery risks, while legal holds—triggered by litigation or investigations—can indefinitely pause deletions. Storage costs further constrain policies, as prolonged retention increases expenses for cloud or on-premises media, prompting tiered approaches like moving older backups to cheaper archival tiers. In 2025, emerging trends leverage AI-driven dynamic retention, where machine learning algorithms automatically adjust policies based on real-time threat detection and data usage patterns to optimize protection without excessive storage bloat. A common example of rotation implementation is a weekly full backup combined with daily incrementals, where full backups occur every Friday to reset the chain, and incrementals run Monday through Thursday, retaining the prior week's full for quick point-in-time recovery. To estimate storage needs under such a policy, organizations use formulas like Total space = (Full backup size × Number of full backups retained) + (Average incremental size × Number of days retained), accounting for deduplication ratios that can reduce effective usage by 50-90% depending on data redundancy. Challenges in these policies arise from balancing extended retention with deduplication technologies, as long-term archives often cannot share metadata across active and retention tiers, potentially doubling storage demands and complicating space reclamation when deleting expired backups. This tension requires careful configuration to avoid compliance failures or unexpected cost overruns, especially in deduplicated environments where inter-backup dependencies limit aggressive pruning.

Data Selection and Extraction

Targeting Files and Applications

Selecting files and applications for backup involves evaluating their criticality to operations or personal use, such as user-generated documents, configuration files, and that cannot be easily recreated, while excluding transient like temporary files to optimize storage and . Critical items are prioritized based on potential impact from loss, with user files in home directories often targeted first due to their unique value, whereas and application binaries are typically omitted as they can be reinstalled from original sources. Exclusion patterns, such as *.tmp or *.log, are applied to skip junk or ephemeral files, reducing backup size without compromising recoverability. At the file level, backups offer granularity by targeting individual files, specific directories, or patterns, allowing for efficient synchronization of only changed or selected items. Tools like enable this selective approach through options such as --include for specific paths (e.g., --include='docs/*.pdf') and --exclude for unwanted elements (e.g., --exclude='temp/'), facilitating incremental transfers over local or remote destinations while preserving permissions and timestamps. This method supports directories as units for broader coverage, such as syncing an entire /home/user/projects/ folder, but allows fine-tuning to avoid unnecessary data. For applications, backups are tailored to their architecture: databases like are often handled via logical dumps using mysqldump, which generates SQL scripts to recreate tables, views, and data (e.g., mysqldump --all-databases > backup.sql), ensuring consistency without halting operations when combined with transaction options like --single-transaction. Email servers employing IMAP protocols can be backed up by exporting mailbox contents to standard formats like or EML using tools that connect via IMAP, preserving folder structures and attachments for archival. Virtual machines (VMs) are commonly treated as single image files, capturing the entire disk state (e.g., VMDK or VHD) through host-level snapshots to enable quick restoration of the full environment. Challenges arise with large files exceeding 1TB, such as high-definition videos, where bandwidth constraints and incompressible types prolong initial uploads and recovery times, often necessitating hybrid strategies like disk-to-disk seeding before transfer. In distributed systems, sprawl across hybrid environments complicates and consistency, as in volume—projected to reach 181 zettabytes globally by 2025—strains backup processes and increases the risk of incomplete captures. By 2025, backing up SaaS applications like Office 365 requires API-based connectors for automated extraction of Exchange, OneDrive, and Teams , with tools configuring authentication to pull items without on-premises agents. Best practices emphasize prioritizing via Recovery Point Objective (RPO), the maximum tolerable interval, targeting under 1 hour for critical applications like and to minimize disruption through frequent incremental or continuous backups. This approach integrates with broader filesystem backups for comprehensive coverage, ensuring selected files and apps align with overall data protection goals.

Filesystem and Volume Backups

Filesystem backups involve creating copies of entire filesystem structures, preserving the hierarchical organization of directories and files as defined by the underlying filesystem format. Common filesystems such as , used in Windows environments, employ a Master File Table (MFT) to manage metadata in a hierarchical tree, while , prevalent in systems, utilizes inodes and block groups to organize data within a structure. These hierarchical setups enable efficient navigation and access, but backups must account for the filesystem's integrity mechanisms, including journaling, which logs pending changes to prevent corruption during power failures or crashes. Journaling in both and ensures transactional consistency by allowing recovery to a known state without full rescans. Backups of filesystems can occur at the file level, which copies individual files and directories while traversing the , or at the block level, which images blocks on the storage device regardless of filesystem boundaries. File-level backups are suitable for selective preservation but may miss filesystem-specific attributes, whereas block-level approaches capture the entire structure atomically, ideal for restoring to the exact original state. Tools like for file-level operations or for block-level raw imaging facilitate these processes on systems. Volume backups extend filesystem backups to logical volumes, such as those managed by Logical Volume Manager (LVM) in , which abstract physical storage into resizable, snapshot-capable units. LVM snapshots create point-in-time copies by redirecting writes to a separate area, allowing backups without interrupting live operations; only changed blocks are stored post-snapshot, minimizing space usage to typically 3-5% of the original volume for low-change scenarios. The command is commonly used for raw imaging of volumes, producing bit-for-bit replicas suitable for disaster recovery. In virtualization environments, integration with tools like exports enables volume-level backups of virtual machines by capturing configuration files (.VMCX), state (.VMRS), and data volumes using Volume Shadow Copy Service (VSS) or WMI-based methods for scalable, host-level operations without guest agent installation. To ensure integrity, backups incorporate checksum verification using algorithms like or SHA-256, which generate fixed-length hashes of data blocks or files to detect alterations during transfer or storage. During the backup process, the source hash is compared against the backup's hash; mismatches indicate , prompting re-backup or alerts. This method verifies completeness and unaltered state, particularly crucial for large-scale operations where bit errors can occur. Challenges in filesystem and backups include managing mounted versus unmounted states: mounted systems risk inconsistency from concurrent writes, necessitating quiescing or snapshots, while unmounted s ensure atomicity but require . Enterprise-scale s, reaching petabyte sizes, amplify issues like prolonged backup windows, bandwidth limitations, and storage , often addressed through incremental block tracking or distributed systems. adds complexity, as exports must handle shared virtual disks and cluster integrations without performance degradation. Unlike selective file backups, which target specific content and may omit structural elements, filesystem and volume backups capture comprehensive attributes including file permissions, ownership (UID/GID), and empty directories to maintain the exact hierarchy and access controls upon restoration. This holistic approach ensures reproducibility of the environment, such as preserving ACLs in NTFS or POSIX permissions in ext4. Backup size estimation accounts for compression, approximated by the formula Backup Size=Volume Size×Compression Ratio\text{Backup Size} = \text{Volume Size} \times \text{Compression Ratio}, where the ratio (typically 0.2-0.5 for mixed data) reflects the reduction factor based on data patterns; for instance, text-heavy volumes achieve higher ratios than already-compressed media.

Handling Live Data and Metadata

Backing up live data, which involves active systems with open files and dynamically changing databases, poses significant challenges due to the risk of capturing inconsistent states during the process. Open files locked by running applications may prevent complete reads, while databases like SQL Server can experience mid-transaction modifications, leading to partial or corrupted data in the backup if not addressed. To mitigate these issues, operating systems provide specialized mechanisms: in Windows environments, the Volume Shadow Copy Service (VSS) enables the creation of point-in-time shadow copies by coordinating with application writers to flush buffers and ensure consistency without interrupting operations. Similarly, in Linux systems, the Logical Volume Manager (LVM) supports snapshot creation, allowing a frozen view of the volume to be backed up while the original continues to serve live workloads, as commonly used for databases like SQL Server on Red Hat Enterprise Linux. Handling metadata alongside live data is essential for maintaining restoration fidelity, as it includes critical attributes such as timestamps, access control lists (ACLs), and extended attributes that govern file permissions, ownership, and security contexts. Failure to preserve these elements can result in restored files lacking proper access rights or audit trails, complicating recovery and potentially exposing systems to security vulnerabilities. Tools designed for filesystems like XFS emphasize capturing these metadata components to ensure accurate reconstruction, particularly in environments requiring forensic recovery. Techniques for live backups prioritize minimal disruption through hot backups, which operate online by temporarily switching databases to a consistent mode without downtime, and quiescing, which pauses application I/O to synchronize data on disk. In virtualized setups like , quiescing leverages guest tools to freeze file systems and application states, enhancing consistency for running workloads. Recent advancements in container orchestration, such as persistent volume snapshots, enable zero-downtime backups by leveraging CSI drivers for atomic captures, a practice increasingly adopted in 2025 for scalable cloud-native applications. However, risks remain if these methods are misapplied, including data inconsistency from uncommitted SQL transactions that could during backup, leading to irrecoverable corruption upon restore. Best practices recommend application-aware tools to address these complexities, such as , which performs backups by integrating with the database to handle redo logs and ensure transactional integrity while including metadata for full fidelity. Organizations should always verify metadata inclusion in backup configurations to support not only operational recovery but also forensic analysis, testing restores periodically to confirm consistency.

Backup Methods

Full and System Imaging Backups

A full backup creates a complete, independent copy of all selected data, including files, folders, and system components, without relying on previous backups. This approach ensures straightforward restoration, as the entire dataset can be recovered independently, eliminating dependencies on other backup sets. However, full backups are resource-intensive, requiring significant time and storage space due to the duplication of all data each time. System imaging extends full backups by capturing an exact replica of entire disks or partitions, enabling bootable operating system restores and bare-metal recovery on dissimilar hardware. Tools such as provide open-source disk cloning capabilities for this purpose, while commercial solutions like True Image support user-friendly imaging for complete system migration and recovery. Full backups and system are commonly used to establish initial baselines for data protection and facilitate disaster recovery, where rapid restoration of an entire environment is critical. In backup rotations, they are typically performed weekly to balance completeness with efficiency. Technically, system can operate at the block level, copying raw disk sectors for precise replication including unused , or at the file level, which targets only allocated files but may overlook low-level structures. Block-level imaging is particularly effective for handling partitions and bootloaders like GRUB, ensuring the and partition tables are preserved for bootable restores. In 2025, advancements in full backups and system imaging emphasize seamless integration with hypervisors such as and , allowing automated VM imaging for hybrid environments. For a 1TB system using SSD storage, a full backup typically takes 2-4 hours, depending on hardware and network speeds. Full backups often serve as the foundational baseline in incremental chains for ongoing protection.

Incremental and Differential Backups

Incremental backups capture only the data that has changed since the most recent previous backup, whether that was a full backup or another incremental one. This approach minimizes backup time and storage usage by avoiding redundant copying of unchanged data. However, it creates a dependency chain where restoring to a specific point requires the initial full backup followed by all subsequent incremental backups in sequence, potentially complicating and prolonging the recovery process. The total size of such a chain is calculated as the size of the full backup plus the sum of the sizes of all changes captured in each incremental backup, expressed as Full+i=1nΔi\text{Full} + \sum_{i=1}^{n} \Delta_i, where Δi\Delta_i represents the changed data volume in the ii-th incremental backup. Differential backups, in contrast, record all changes that have occurred since the last full backup, making them cumulative rather than dependent on prior differentials. This method simplifies restoration, as only the most recent full backup and the latest differential are needed to recover to the desired point. However, differential backups grow larger over time without a new full backup, as they accumulate all modifications since the baseline, leading to increased storage demands compared to incremental methods. Incremental backups generally require less storage space than differentials, achieving significant savings due to their narrower scope of changes. Implementation of these backups relies on technologies that efficiently track modifications. For instance, VMware's Changed Block Tracking (CBT) feature identifies altered data blocks on disks since the last backup, enabling faster incremental operations by processing only those blocks. Open-source tools like support incremental backups by scanning for new or modified files and blocks, using deduplication to further optimize storage across runs. The primary advantages of incremental backups include reduced backup duration and storage footprint, making them ideal for frequent operations in high-change environments, though their chain dependency can extend restore times. Differential backups offer quicker recoveries at the cost of progressively larger backup sizes and longer creation times after extended periods. In , AI-driven optimizations are enhancing these methods by predicting change patterns—such as data modification rates in or filesystems—to dynamically adjust backup scopes and schedules. An advanced variant, incremental-forever backups, eliminates the need for periodic full backups after the initial one by using reverse incrementals or synthetic methods to create point-in-time restores efficiently, reducing storage and bandwidth while maintaining recoverability. This approach is gaining traction in 2025 for cyber-resilient environments. A common strategy involves performing a weekly full backup followed by daily incrementals, which can significantly lower overall storage needs compared to full-only schedules.

Continuous Data Protection

(CDP) is a backup methodology that captures and records every data change in real-time or near-real-time, enabling recovery to virtually any point in time without significant . This approach maintains a continuous journal of modifications, allowing users to roll back to a precise moment, such as before a specific transaction or , which is essential for environments where even seconds of can be costly. Unlike near-continuous data protection, which performs backups at fixed intervals like every 15 minutes, true CDP ensures all changes are immediately replicated, achieving a recovery point objective (RPO) approaching zero seconds. Key techniques include journaling, where every write operation is logged for granular rollback; log shipping, which periodically or continuously transfers transaction logs to a secondary system for replay; database replication using mechanisms like MySQL binary logs (binlogs) to mirror changes in real-time; and frequent snapshots that capture incremental states without interrupting operations. These methods collectively minimize data gaps by treating backups as an ongoing process rather than periodic events. CDP is particularly suited for high-availability applications in sectors like , where it protects transaction records and ensures by preventing loss of sensitive client data during outages or cyberattacks. As of 2025, emerging trends in data protection include AI-enhanced systems with for real-time safeguarding, applicable to (IoT) deployments handling vast sensor data. Implementation often relies on specialized tools such as , which provides journal-based CDP for virtualized environments with continuous replication, or PowerProtect, which supports real-time data protection across hybrid infrastructures. However, challenges include substantial bandwidth demands for sustaining continuous , particularly in distributed setups, necessitating dedicated networks or compression to mitigate impacts. Compared to incremental backups, which offer finer over full backups but still operate on schedules that can result in hours of potential , CDP reduces RPO to minutes or seconds through ongoing capture. Storage efficiency is achieved via deduplicated change logs in the journal, which retain only unique modifications rather than full copies, optimizing space while preserving point-in-time recoverability.

Storage Media and Locations

Local Media Options

Local media options encompass on-premises storage solutions that enable direct, physical access to backup data without reliance on external networks. These include magnetic tapes, hard disk drives (HDDs), solid-state drives (SSDs), and optical discs, each offering distinct trade-offs in capacity, access speed, cost, and longevity suitable for various backup scenarios. Magnetic tape remains a cornerstone for high-capacity, cost-effective backups, particularly in enterprise environments requiring archival storage. The Linear Tape-Open (LTO) standard, with LTO-9 as the prevailing format throughout much of 2025 and LTO-10 announced in November 2025 with 40 TB native capacity per cartridge (shipping Q1 2026), provides 18 TB of native capacity per LTO-9 cartridge, expandable to 45 TB with compression, at a native transfer rate of 400 MB/s. Its advantages include low cost per gigabyte—often under $0.01/GB—and suitability for sequential data writes, making it ideal for full backups of large datasets. However, the sequential access nature limits random read/write performance, requiring full tape scans for data retrieval, which can take hours for terabyte-scale volumes. LTO tapes also boast an archival lifespan of up to 30 years under optimal conditions, far exceeding many digital alternatives for long-term retention. Hard disk drives offer versatile local storage for both active and archival backups, often deployed in arrays for enhanced capacity and reliability. Traditional HDDs provide high density at low cost, with enterprise models featuring (MTBF) ratings around 1 to 2.5 million hours, ensuring durability in continuous operation. However, external HDDs are particularly susceptible to failure from mechanical wear over time or physical impacts such as shocks, necessitating regular backups to additional media to mitigate the risk of data loss. They are commonly integrated into (NAS) devices for shared access or (SAN) systems for block-level performance in data centers. Redundancy is achieved through RAID configurations, such as RAID 6 (tolerating up to two drive failures) or RAID 10 (balancing speed and redundancy), which maintain . For faster access, NVMe-based SSDs serve as local backup targets, delivering sequential write speeds exceeding 7 GB/s but at a premium cost of $0.05–$0.10/GB, making them preferable for incremental backups or imaging where speed trumps capacity; quad-level cell (QLC) NAND variants offer higher capacities at reduced costs for archival use. Optical media, particularly Blu-ray discs, support write-once archival backups with capacities up to 100 GB per quad-layer disc in BDXL format, suitable for small-scale or compliance-driven retention. Archival-grade variants, like , extend readability to 1000 years, though practical use is limited by slower write speeds (around 20–50 MB/s) and manual handling requirements. Selecting local media involves balancing capacity, access speed, and lifespan against use case needs; for instance, tapes excel in write speeds of 400 MB/s for bulk transfers but lag in retrieval compared to HDDs or SSDs offering under 1 ms. In 2025, hybrid systems scale to petabyte levels—such as QNAP's 60-bay enclosures exceeding 1 PB—combining HDDs with SSD caching for optimized backup workflows. These options form the local component of strategies like the 3-2-1 rule, ensuring at least one onsite copy for rapid recovery. Environmental factors critically influence media reliability; magnetic tapes require climate-controlled storage at 15–25°C and 20–50% relative humidity to prevent binder degradation, with stable conditions minimizing distortion. HDDs and SSDs demand vibration-resistant enclosures—HDDs tolerate up to 0.5 G during operation—to avoid mechanical failure, alongside cool, dry environments (5–35°C, <60% RH) for archival exceeding 5 years when powered off.

Remote and Cloud Storage Services

Remote backup services enable organizations to store data copies at offsite locations via network protocols, enhancing protection against localized threats such as fires or floods by providing geographic diversity. These services often utilize secure file transfer protocols like and SFTP (Secure File Transfer Protocol), where SFTP employs SSH encryption to safeguard data during transmission to remote vaults or servers. Dedicated appliances, such as those integrated with Systems Director, facilitate automated backups to remote SFTP servers, ensuring reliable offsite replication without manual intervention. By distributing data across multiple geographic regions, these approaches mitigate risks from site-specific disasters, allowing quicker recovery and business continuity. Cloud storage services have become a cornerstone for scalable backups, offering virtually unlimited capacity and automated management through providers like (AWS) S3, Blob Storage, and . These platforms feature tiered storage options tailored to access frequency and cost efficiency: hot tiers for frequently accessed data, cool or cold tiers for less urgent retrievals, and archival tiers for long-term retention with retrieval times ranging from hours to days. For instance, AWS S3's standard (hot) tier is priced at approximately $0.023 per GB per month (US East region, as of November 2025), while archival options like S3 Glacier Deep Archive drop to around $0.00099 per GB per month, enabling cost-effective scaling for backup workloads. Azure Blob and follow similar models, with hot tiers at about $0.0184 and $0.020 per GB per month, respectively (US East, as of November 2025), allowing users to balance performance and expense based on data lifecycle needs. As of , advancements in backup technologies emphasize multi-cloud strategies to avoid single-provider dependencies and leverage the strengths of multiple platforms for redundancy. backups integrate local processing at distributed sites to reduce latency before syncing to central clouds, supporting real-time data protection in IoT and remote operations. Integration with Software-as-a-Service (SaaS) environments has deepened, exemplified by Veeam's solutions for AWS, which automate backups of cloud-native workloads like EC2 instances and S3 buckets while ensuring compliance and rapid restoration. These developments, driven by rising cyber threats, promote hybrid architectures that combine on-premises, edge, and multi-cloud elements for comprehensive resilience. Security in remote and cloud backups prioritizes robust protections, with in transit via TLS 1.3 ensuring during uploads and downloads across networks. Compliance standards like SOC 2, which audits controls for and , are widely adopted by major providers to verify trustworthy operations. However, challenges persist, including latency for transferring large datasets over wide-area networks, which can extend initial backup times from days to weeks depending on bandwidth. Vendor lock-in poses another risk, as proprietary formats and APIs may complicate between providers, potentially increasing long-term costs and limiting flexibility. Implementation of remote and cloud backups often begins with seeding the initial dataset to accelerate setup, particularly for large volumes where online transfer would be inefficient. Services like those from Acronis and Barracuda allow users to back up data to a provided hard drive, mail it to the provider's data center for upload, and then initiate ongoing synchronization. Subsequent updates employ incremental synchronization, transferring only changed data blocks to minimize bandwidth usage and maintain currency. This approach aligns with the 3-2-1 backup rule—three copies of data on two media types, with one offsite—achieved through geo-redundant storage that replicates backups across multiple regions for fault tolerance. Providers like AWS and Azure support geo-redundancy natively, ensuring an offsite copy remains accessible even if a primary region fails.

Data Optimization Techniques

Compression and Deduplication

Compression and deduplication are key data reduction techniques employed in backup systems to minimize storage requirements while preserving for restoration. These methods address the growing volume of by eliminating redundancies and shrinking file sizes, enabling more efficient use of local, remote, or resources. Compression operates by encoding more compactly, whereas deduplication identifies and stores only unique instances of blocks, preventing duplication across backups. Together, they can significantly lower the effective storage footprint, with typical combined reductions ranging from 5:1 to 30:1 depending on characteristics. Compression in backups relies on lossless algorithms that reduce size without any loss of , ensuring bit-for-bit accurate recovery during restoration. LZ4, developed for high-speed operations, achieves compression speeds exceeding 500 MB/s per core and is ideal for scenarios prioritizing performance over maximal size reduction, often yielding modest ratios suitable for real-time backups. In contrast, Zstandard (), which has become a default choice in many systems by 2025, offers a superior balance of speed and ; internal benchmarks show it providing 30-50% better compression than predecessors like MS_XPRESS for database backups, typically reducing sizes by 50-70% on redundant sets such as logs or structured files. For example, a 100 GB database backup compressed with at level 3 can shrink to 30-50 GB, depending on inherent redundancy. These algorithms are widely integrated into backup tools to handle diverse types without compromising restorability. Deduplication further optimizes backups by detecting and eliminating duplicate blocks, a process particularly effective in environments with high like virtual desktop infrastructure (VDI). Block-level deduplication divides files into fixed or variable-sized chunks, computes a cryptographic hash for each—commonly using SHA-256 for its —and stores only unique blocks while referencing duplicates via pointers. This approach can yield savings of 10-30x in VDI backups, where identical images lead to extensive overlap, reducing 100 TB of raw to as little as 3.3-10 TB of physical storage. Deduplication occurs either inline, where redundancies are removed in real-time before writing to storage to conserve immediate space and bandwidth, or post-process, where is first stored fully and then analyzed for duplicates in a separate pass, which may incur higher initial resource use but allows for more thorough optimization. Inline methods are preferred in bandwidth-constrained environments, though they demand more upfront CPU cycles. When combining compression and deduplication, best practices dictate performing deduplication first to remove redundancies from the full dataset, followed by compression on the resulting unique blocks, as this maximizes overall efficiency by avoiding redundant encoding efforts. The effective backup size can be approximated by the formula: Effective size=Original size×(1Dup ratio)×Compression ratio\text{Effective size} = \text{Original size} \times (1 - \text{Dup ratio}) \times \text{Compression ratio} Here, the duplication ratio represents the fraction of redundant data (e.g., 0.9 for 90% duplicates), and the compression ratio is the fractional size reduction after deduplication (e.g., 0.5 for 50% smaller). This sequencing, as implemented in systems like Dell Data Domain, applies local compression algorithms such as LZ or GZfast to deduplicated segments, achieving compounded savings without inflating processing overhead. Tools like Bacula incorporate built-in deduplication via optimized volumes that use hash-based chunking to reference existing data, supporting both inline and post-process modes for flexible deployment. However, challenges include elevated CPU overhead during intensive hashing and scanning—particularly in inline operations—and rare false positives from hash collisions, though SHA-256 minimizes this risk to negligible levels for most datasets. In variable data environments, such as those with frequent changes, tuning block sizes helps mitigate these issues. By 2025, trends in backup optimization increasingly leverage AI-accelerated deduplication for in environments, where traditional hash-based methods struggle with similarity detection in files like documents or media. Adaptive frameworks, such as those employing for resemblance-based chunking, enhance ratios on enterprise backups and cloud traces, routinely achieving 5:1 or higher reductions by intelligently grouping near-duplicates. These AI enhancements, integrated into platforms handling VM snapshots and , address the explosion of growth while maintaining low latency for scalable backups.

Encryption and Security Measures

Encryption plays a critical role in protecting backup data from unauthorized access, ensuring confidentiality both during storage and transmission. The (AES) with 256-bit keys, known as AES-256, is widely adopted as the industry benchmark for securing backup data due to its robustness against brute-force attacks. For instance, solutions like NetBackup and Backup employ AES-256 to encrypt data written to repositories, tape libraries, and . Encryption at rest safeguards stored backup files, preventing access if physical media or storage systems are compromised, while encryption in transit protects data as it moves between source systems and backup locations. Tools such as Veritas Alta Recovery Vault apply AES-256 encryption for both at-rest and in-transit protection, often integrating FIPS 140-2 validated modules to meet federal cryptographic standards. Microsoft BitLocker, a full-volume encryption tool, is commonly used for at-rest protection on Windows-based backup media, ensuring that entire drives remain inaccessible without the decryption key. Effective key management is essential to maintain security, with protocols like the Key Management Interoperability Protocol (KMIP) enabling centralized control and distribution of encryption keys across heterogeneous environments. AWS services, for example, leverage AWS Key Management Service (KMS) for handling keys in backup encryption, supporting seamless rotation and auditing. Beyond encryption, additional security measures enhance backup resilience against threats like . Immutable storage prevents alterations or deletions of backup data for a defined , with Object Lock providing write-once-read-many (WORM) functionality that locks objects for configurable durations, typically ranging from days to years, to comply with regulatory retention requirements. Air-gapping isolates backups by physically or logically disconnecting them from networks, creating an offline barrier that ransomware cannot traverse, as seen in strategies combining immutable copies with offline media. (MFA) adds a layer of , requiring multiple verification methods to authenticate users or systems before permitting backup operations or recovery. Ransomware attacks have intensified the focus on these protections, particularly following the 2021 Colonial Pipeline incident, where the DarkSide ransomware group disrupted fuel supplies across the U.S. East Coast, highlighting the need for secure, isolated backups to enable rapid recovery without paying ransoms. By 2025, tactics increasingly target backups first, prompting adoption of behavioral analysis to detect anomalous patterns in backup access and isolated recovery environments that allow restoration from clean copies without reinfection. Tools like incorporate built-in immutability and air-gapped architecture, using WORM policies to lock backups and provide threat intelligence for proactive defense. Compliance frameworks further guide these practices, with NIST Special Publication 800-53 outlining controls for system and communications protection, including encryption requirements for backups to ensure data integrity and . Zero-trust models, as detailed in federal guidelines, mandate continuous verification of all backup access requests, treating every interaction as potentially hostile regardless of origin. Auditing logs maintain a by recording all backup events, from creation to restoration, enabling traceability and forensic analysis in line with NIST AU-10 controls. Despite these benefits, and measures introduce challenges, such as the risk of key loss, which could render backups irretrievable if not mitigated through secure storage and recovery procedures. impacts arise from computational overhead, potentially slowing operations, though hardware-accelerated implementations minimize this in modern systems. Rubrik's immutable features address some challenges by integrating with immutability without compromising recovery speed. is typically applied after compression to optimize both security and efficiency.

Other Manipulations

Multiplexing in backup processes involves interleaving multiple data streams from different sources onto a single target storage device, such as a tape drive, to optimize throughput and minimize idle time. This technique allows backup software to read data from several files or clients simultaneously while writing to one destination, effectively balancing the slower data ingestion rates from sources against the higher speeds of storage media. For instance, in tape-based systems, a common multiplexing ratio like 4:1—where four input streams are combined into one output—can significantly improve overall backup performance by keeping the drive operating at near-full capacity. Staging serves as a temporary intermediate storage layer in backup workflows, particularly within (HSM) systems, where is first written to high-speed disk before relocation to slower, higher-capacity media like tape. This approach enables verification, checking, and processing of backup images without directly burdening final storage, reducing the risk of incomplete transfers and allowing for more efficient in multi-tier environments. In practice, disk staging storage units hold images until space constraints trigger automated migration, ensuring that recent or active remains accessible on faster tiers while older moves to archival storage. Refactoring of backup datasets entails reorganizing stored to enhance and , often through tiering mechanisms that classify as "hot" (frequently accessed) or "" (infrequently used). Hot is retained on performance-oriented storage like SSDs for quick retrieval during recovery, while cold is migrated to cost-effective tiers such as archival disks or tape, optimizing both speed and expense without altering the underlying backup content. This reorganization supports dynamic adjustment based on access patterns, ensuring that backup systems align with evolving usage needs in enterprise settings. Automated grooming automates the pruning of obsolete backups according to predefined retention policies, systematically deleting expired images to reclaim storage space and maintain compliance. Tools like Data Lifecycle Management (DLM) in backup solutions monitor retention periods and execute cleanup cycles—typically every few hours—marking and removing sets once their hold time elapses, which prevents storage bloat and simplifies . By 2025, advancements in AI integration enable anomaly-based grooming, where detects irregularities in backup patterns, such as unexpected data growth or corruption, to proactively refine retention and cleanup processes beyond rigid schedules. These manipulations find key applications in (SAN) environments, where and staging combine to shorten backup windows by parallelizing data flows and buffering transfers, allowing large-scale operations to complete faster without overwhelming network resources. For example, in SAN-attached setups, staging to disk before tape duplication enables concurrent processing of multiple hosts, while multiplexing ensures continuous drive utilization, collectively reducing in high-volume data centers.

Management and Recovery

Scheduling and Automation

Scheduling in backup processes involves defining specific times or conditions for initiating data copies to ensure consistency and minimal disruption. Traditional methods often rely on cron jobs, a system utility for automating tasks at predefined intervals, such as running full backups nightly at off-peak hours to avoid impacting operations. Policy-based scheduling, common in enterprise environments, allows administrators to set rules for backup frequency and type—such as full backups weekly and incrementals daily—aligned with recovery time objectives (RTO) and recovery point objectives (RPO) while steering clear of peak system loads during hours. Automation tools streamline these schedules by integrating with orchestration platforms and cloud services. , an open-source automation tool, can deploy and manage backup jobs across hybrid environments, including configurations for to handle scheduling and execution without manual intervention. provides built-in automation for job orchestration, supporting scripted deployments and API-driven scheduling for consistent backups. Cloud schedulers like AWS Backup enable policy-driven automation, where rules define backup windows, retention, and transitions to colder storage tiers automatically. Event-triggered backups enhance responsiveness by initiating processes based on specific conditions, such as file modifications detected via tools like on systems or Agent's event monitoring for changes during active sessions. Best practices emphasize resource efficiency and foresight in scheduling. Staggered schedules distribute backup loads across time slots—for instance, grouping servers into cohorts to prevent simultaneous I/O spikes on shared storage—reducing contention and improving overall . In 2025, (AI) is increasingly applied for predictive scheduling, using to forecast data growth patterns and adjust backup frequencies proactively, thereby optimizing storage usage and minimizing unnecessary operations. Scheduling can briefly incorporate rotation policies, such as the grandfather-father-son scheme, to cycle through backup sets without overlapping critical windows. Effective monitoring is integral to , providing real-time oversight of backup operations. Alerts for failures, such as job timeouts or incomplete transfers, can be configured through platform-native tools like AWS Backup's event notifications or Azure Monitor, enabling rapid response to issues. Integration with (SIEM) systems, as supported by and solutions like Keepit with Sentinel, correlates backup events with security logs for holistic threat detection and anomaly alerting. Challenges in backup automation often center on failure handling and reliability. Transient issues like network disruptions can cause job interruptions, necessitating retry mechanisms—such as in or automated re-execution in Azure Backup—to attempt recovery without manual escalation. Notifications via , , or integrated dashboards ensure administrators are informed of persistent failures, while scripting significantly reduces manual errors by enforcing consistent processes and eliminating oversight in routine tasks.

Onsite, Offsite, and Backup Sites

Onsite backups involve storing data copies at the primary facility, enabling immediate access for quick recovery from minor incidents such as hardware failures or user errors. This approach typically achieves a low recovery time objective (RTO) of less than one hour due to the proximity of storage media like local disks or tapes, allowing rapid restoration without external dependencies. However, onsite storage carries significant risks as a , vulnerable to localized threats including fires, floods, or power outages that could destroy both primary and backup data simultaneously. Offsite backups address these limitations by replicating data to geographically separate locations, such as secure vaults or dedicated disaster recovery (DR) sites, to protect against site-wide disruptions. These facilities must meet criteria for physical separation, environmental controls, and access security to ensure . Offsite strategies are classified into types based on readiness: hot sites, which are fully mirrored and active for near-real-time ; warm sites, featuring partial equipment and periodic for recovery in hours to days; and cold sites, providing basic infrastructure like power and space but requiring full setup over days or weeks, often using tape archival for long-term storage. Backup sites extend offsite capabilities by maintaining full system replicas for seamless , particularly in environments where multi-region deployments enhance global resilience against regional outages. As of 2025, providers like AWS emphasize multi-region architectures to distribute workloads across availability zones, minimizing single-point failures and supporting RTOs aligned with business criticality. Key strategies for offsite implementation include electronic vaulting, which automates data transfer to remote storage via replication or journaling for faster, more secure delivery compared to physical shipment of media like tapes. Electronic vaulting reduces labor and transit risks while enabling quicker access, though it requires robust network security. In contrast, physical shipment suits cold storage but incurs higher costs from handling and delays. Cost-benefit analyses show offsite solutions, especially electronic methods, significantly mitigate downtime by enabling recovery from disasters that could otherwise extend outages for days, aligning with the 3-2-1 rule of maintaining three data copies on two media types with one offsite. Legal considerations for offsite backups emphasize , particularly in cross-border transfers, where regulations like the EU's (GDPR) mandate that personal data of EU residents remain subject to equivalent protections regardless of storage location. As of 2025, additional frameworks such as the EU's NIS2 Directive require enhanced cybersecurity measures, including regular testing of backup and recovery processes for critical sectors. Organizations must ensure offsite sites comply with jurisdictional laws, such as keeping EU data within the EU or using approved transfer mechanisms to avoid penalties.

Verification, Testing, and Restoration

Verification of backups is essential to confirm after the backup process, preventing silent that could render restores ineffective. Post-backup verification typically involves computing and comparing checksums, such as or SHA-256 hashes, against the original data to ensure 100% integrity. Automated tools perform these scans routinely, detecting bit rot or transmission errors without manual intervention, and are recommended as a standard practice in data protection workflows. Testing backups ensures they are not only complete but functional for recovery, mitigating risks from untested assumptions. Organizations often conduct quarterly full restores in isolated sandbox environments to simulate real-world scenarios without impacting production systems. Tabletop exercises for disaster recovery involve team discussions of hypothetical failures, validating coordination and procedures without executing actual restores. According to a 2025 report, only 50% of organizations test their disaster recovery plans annually, highlighting a gap in proactive validation. Restoration processes vary between granular file-level recovery, which targets specific items for quick access, and full s, which rebuild entire environments from images. Key steps in a full include mounting the backup image to a target volume, applying any incremental changes or logs, and the system in a test environment to verify operability. Challenges in restoration include prolonged times, particularly from tape media, where recovering 1TB of may require up to 48 hours due to and hardware limitations. Additionally, approximately 50% of backup restores fail, often because they were never tested for recoverability. Best practices emphasize documented runbooks that outline step-by-step recovery actions, alongside regular validation of Recovery Time Objectives (RTO) and Recovery Point Objectives (RPO) to align with business needs. Immutable backups, which lock data against modifications, facilitate clean restores following incidents by ensuring attackers cannot tamper with copies. Offsite copies may be incorporated into tests to confirm multi-location viability.

References

  1. https://www.ibm.com/think/topics/backup-and-restore
  2. https://www.nnlm.gov/guides/data-glossary/data-backup
  3. https://www.usgs.gov/data-management/backup-secure
  4. https://www.cisa.gov/sites/default/files/publications/data_backup_options.pdf
  5. https://security.berkeley.edu/education-awareness/backing-your-data
  6. https://www.baylor.edu/content/services/document.php/192120.pdf
  7. https://learn.microsoft.com/en-us/azure/reliability/concept-redundancy-replication-backup
  8. https://docs.aws.amazon.com/aws-backup/latest/devguide/point-in-time-recovery.html
  9. https://cloudian.com/guides/data-backup/data-backup-in-depth/
  10. https://www.ibm.com/think/topics/business-continuity-vs-disaster-recovery-plan
  11. https://www.fit.edu/policies/information-technology/policies/it-data-backup/
  12. https://www.kelsercorp.com/blog/effective-data-backups-bcdr
  13. https://itsupport.ou.edu/TDClient/30/Unified/KB/ArticleDet?ID=3153
  14. https://www.connectwise.com/blog/bdr-benefits-and-best-practices
  15. https://www.novabackup.com/blog/the-evolution-of-backup
  16. https://www.computerhistory.org/timeline/memory-storage/
  17. https://rivery.io/blog/big-data-statistics-how-much-data-is-there-in-the-world/
  18. https://www.ibm.com/history/punched-card
  19. https://www.ricomputermuseum.org/1/the-history-of-computer-data-storage
  20. https://www.ibm.com/history/magnetic-tape
  21. https://utcc.utoronto.ca/~cks/space/blog/unix/DumpHistory
  22. https://www.ontrack.com/en-gb/blog/raid-technology
  23. https://media.techtarget.com/searchStorage/downloads/Feb2009STOReMag.pdf
  24. https://infobeans.ai/evolution-data-backup-strategies-technologies/
  25. https://www.ibm.com/think/topics/vmware
  26. https://www.cloudseedrive.com/history-of-amazon-s3/
  27. https://www.redhat.com/en/about/press-releases/red-hat-acquires-permabit-assets-eases-barriers-cloud-portability-data-deduplication-technology
  28. https://www.ibm.com/think/x-force/wannacry-worm-ransomware-changed-cybersecurity
  29. https://www.linkedin.com/pulse/global-ransomware-trends-20202025-insights-telecom-leaders-baek-4qy6c
  30. https://www.sophos.com/en-us/content/state-of-ransomware
  31. https://www.peersoftware.com/navigating-the-2025-storage-hype-cycle-why-we-believe-peer-softwares-vision-aligns-with-whats-next/
  32. https://www.gartner.com/en/documents/6611202
  33. https://www.veeam.com/blog/321-backup-rule.html
  34. https://www.techtarget.com/searchdatabackup/definition/3-2-1-Backup-Strategy
  35. https://www.backblaze.com/blog/the-3-2-1-backup-strategy/
  36. https://www.baculasystems.com/blog/321-vs-3211-vs-32110-backup-rules/
  37. https://www.acronis.com/en/blog/posts/backup-rule/
  38. https://www.seagate.com/blog/what-is-a-3-2-1-backup-strategy/
  39. https://www.nakivo.com/blog/3-2-1-backup-rule-efficient-data-protection-strategy/
  40. https://www.unitrends.com/blog/the-state-of-backup-and-recovery-2025-trends-and-challenges/
  41. https://www.nakivo.com/blog/gfs-retention-policy-explained/
  42. https://trilio.io/resources/grandfather-father-son-backup/
  43. https://www.backupassist.com/blog/the-grandfather-father-son-backup-scheme-explained
  44. https://severalnines.com/blog/the-tower-of-hanoi-backup-strategy/
  45. https://www.handybackup.net/tower-of-hanoi-backup.shtml
  46. https://acronis-backup-recovery.helpmax.net/en/understanding-acronis-backup-recovery-10/tower-of-hanoi-backup-scheme/
  47. https://gdpr-info.eu/art-5-gdpr/
  48. https://www.cookieyes.com/blog/gdpr-how-long-to-keep-data/
  49. https://www.hipaajournal.com/hipaa-retention-requirements/
  50. https://learn.microsoft.com/en-us/azure/backup/backup-azure-immutable-vault-concept
  51. https://www.arcserve.com/blog/deep-dive-immutable-storage-how-it-works-ensuring-data-protection-and-ransomware-recovery
  52. https://renovodata.com/factors-to-consider-when-developing-a-data-retention-policy-for-your-business/
  53. https://www.filecloud.com/blog/data-retention-policy-best-practices/
  54. https://www.veeam.com/blog/2025-data-resilience-predictions.html
  55. https://concentric.ai/2025-guide-to-modern-information-lifecycle-management/
  56. https://www.backupassist.com/education/articles/choosing-the-right-backup-scheme-in-backupassist.html
  57. https://wintelguy.com/backupcalc.pl
  58. https://kb.synology.com/tr-tr/DSM/tutorial/How_to_select_a_Synology_product_for_Active_Backup_for_Business
  59. https://www.druva.com/blog/long-term-retention-of-backups-a-new-architecture
  60. https://www.usenix.org/system/files/conference/hotstorage16/hotstorage16_shilane.pdf
  61. https://support.crashplan.com/hc/en-us/articles/8857772013837-What-should-you-back-up
  62. https://www.digitalocean.com/community/tutorials/how-to-use-rsync-to-sync-local-and-remote-directories
  63. https://www.open-e.com/blog/criteria-for-selecting-files-when-performing-full-incremental-differential-backup/
  64. https://dev.mysql.com/doc/refman/8.4/en/mysqldump.html
  65. https://www.dpconline.org/docs/technology-watch-reports/739-dpctw11-01-pdf/file
  66. https://www.nakivo.com/blog/vmware-backup/
  67. https://www.carbonite.com/globalassets/files/white-papers/pro-tips-for-backing-up-large-datasets.pdf
  68. https://documentation.commvault.com/saas/office_365.html
  69. https://www.veeam.com/blog/recovery-time-recovery-point-objectives.html
  70. https://www.freecodecamp.org/news/file-systems-architecture-explained/
  71. https://docs.redhat.com/en/documentation/red_hat_enterprise_linux/6/html/logical_volume_manager_administration/snapshot_volumes
  72. https://learn.microsoft.com/en-us/windows-server/virtualization/hyper-v/backup-approaches
  73. https://www.salvationdata.com/knowledge/ensuring-file-extraction-integrity-with-sha-and-md5-checksum/
  74. https://learn.microsoft.com/en-us/sql/relational-databases/backup-restore/backup-compression-sql-server?view=sql-server-ver17
  75. https://www.ninjaone.com/blog/backup-and-restore-permissions-of-files/
  76. https://www.nakivo.com/blog/crash-consistent-vs-application-consistent-backup/
  77. https://learn.microsoft.com/en-us/windows-server/storage/file-server/volume-shadow-copy-service
  78. https://docs.redhat.com/en/documentation/red_hat_enterprise_linux/7/html-single/logical_volume_manager_administration/index
  79. https://www.redhat.com/en/blog/speed-sql-server-2022-backups-rhel-logical-volume-manager
  80. https://learn.microsoft.com/en-us/azure/storage/files/storage-files-faq
  81. https://www.baculasystems.com/blog/xfs-backup-restore-guide/
  82. https://www.nakivo.com/blog/what-is-quiescing-for-vmware-vsphere-vms/
  83. https://documentation.commvault.com/v11/commcell-console/backups_for_vmware_with_quiescing_of_operating_system_and_applications.html
  84. https://cpluz.com/blog/kubernetes-backup-top-3-kubernetes-backup-best-practices-for-a-zero-downtime-environment-2025/
  85. https://docs.oracle.com/en/industries/financial-services/banking-treasury-management/14.7.0.0.0/trdbp/database-backup-recommendations.html
  86. https://www.oracle.com/docs/tech/database/rman-perf-tuning-bp.pdf
  87. https://www.veeam.com/blog/difference-backup-and-recovery.html
  88. https://api-int.fmaas-devstage-backend.fmaas.res.[ibm](/page/IBM).com/libweb/oWui3g/6OK122/data_backup-solutions__for-enterprise.pdf
  89. https://www.acronis.com/en/blog/posts/bare-metal-restore/
  90. https://clonezilla.org/
  91. https://www.acronis.com/en/products/true-image/cloning/
  92. https://www.cnet.com/tech/computing/differences-between-file-level-and-block-level-cloning/
  93. https://www.acronis.com/en/blog/posts/dcig-names-acronis-a-top-5-backup-vendor-for-vmware-in-two-categories/
  94. https://www.easeus.com/questions/backup/how-long-should-it-take-to-transfer-a-full-500gb-crucial-ssd-to-a-1tb-crucial-ssd.html
  95. https://community.veeam.com/blogs-and-podcasts-57/data-backup-basics-iv-understanding-backup-strategies-full-incremental-and-differential-backups-6251
  96. https://www.ibm.com/docs/en/storage-protect/8.1.25?topic=use-file-backup-techniques
  97. https://learn.microsoft.com/en-us/azure/backup/backup-architecture
  98. https://www.nakivo.com/blog/what-is-incremental-backup/
  99. https://learn.microsoft.com/en-us/sql/relational-databases/backup-restore/differential-backups-sql-server?view=sql-server-ver17
  100. https://www.veritas.com/support/en_US/doc/59226269-99535599-0/v53891988-99535599
  101. https://www.connectwise.com/blog/incremental-vs-differential-backup
  102. https://knowledge.broadcom.com/external/article/320557/changed-block-tracking-cbt-on-virtual-ma.html
  103. https://forum.duplicati.com/t/backup-type-is-incremental/8786
  104. https://www.hcltech.com/blogs/incremental-forever-backup-the-future-of-cyber-resilience
  105. https://www.acronis.com/en/blog/posts/incremental-differential-backups/
  106. https://www.cohesity.com/glossary/continuous-data-protection/
  107. https://www.hpe.com/us/en/what-is/cdp-continuous-data-protection.html
  108. https://www.techtarget.com/searchstorage/definition/continuous-data-protection
  109. https://trilio.io/resources/continuous-data-protection/
  110. https://www.tencentcloud.com/techpedia/130618
  111. https://www.rubrik.com/insights/what-is-continuous-data-protection
  112. https://www.fanruan.com/en/glossary/data-storage/continuous-data-protection
  113. https://www.datainsightsmarket.com/reports/continuous-data-protection-and-recovery-software-1412774
  114. https://lumenalta.com/insights/what-is-data-protection-in-2025
  115. https://www.zerto.com/
  116. https://www.dell.com/en-us/shop/storage-servers-and-networking-for-business/sf/powerprotect-data-manager
  117. https://www.techtarget.com/searchdatabackup/answer/The-benefits-and-drawbacks-of-CDP-solutions
  118. https://www.starwindsoftware.com/blog/continuous-data-protection/
  119. https://www.lto.org/lto-9/
  120. https://www.quantum.com/en/products/tape-storage/lto-9/
  121. https://www.lto.org/2025/11/lto-program-announces-new-40-tb-lto-10-cartridge-specifications-and-refreshes-its-roadmap-for-ultra-high-density-ai-ready-archival-storage/
  122. https://www.mediaduplicationsystems.com/blog/understanding-lto-tape-life-expectancy-key-factors-and-insights/
  123. https://www.ontrack.com/en-us/blog/hard-drive-failures-different-types
  124. https://www.seagate.com/www-content/datasheets/pdfs/exos-x20-DS2118-1-2305US-en_US.pdf
  125. https://www.blankmediaprinting.com/blog-article/blu-ray-disk-storage-capacity
  126. https://www.qnap.com/en-as/news/2025/qnap-launches-the-tl-r6020sep-rp-4u-60-bay-high-density-sassata-jbod-delivering-petabyte-scale-expansion-for-enterprises
  127. https://www.clir.org/wp-content/uploads/sites/6/pub54.pdf
  128. https://asset.fujifilm.com/www/us/files/2024-04/69ca08096529949d3aa09b45494353af/FF_Care_Handling_2024_Update.pdf
  129. https://www.ibm.com/docs/en/storage-deep-archive?topic=media-environmental-shipping-specifications-lto-tape-cartridges
  130. https://phoenixnap.com/glossary/what-is-remote-backup
  131. https://www.kiteworks.com/secure-file-transfer/twenty-five-sftp-use-cases/
  132. https://www.redbooks.ibm.com/redbooks/pdfs/sg247860.pdf
  133. https://backupchain.com/Remote-Backup.html
  134. https://www.backblaze.com/cloud-storage/pricing
  135. https://www.finout.io/blog/cloud-storage-pricing-comparison
  136. https://www.cloudzero.com/blog/s3-pricing/
  137. https://www.cloudlaya.com/blog/google-cloud-storage-vs-azure-blob-storage/
  138. https://corptec.com.au/blog/hycu/multi-cloud-backup-and-disaster-recovery-trends-2025/
  139. https://www.tierpoint.com/blog/cloud-computing-innovation/
  140. https://www.veeam.com/solutions/alliance-partner/aws.html
  141. https://www.business.com/articles/top-10-cloud-storage-services-for-business/
  142. https://www.huntress.com/cybersecurity-101/topic/what-is-cloud-data-security
  143. https://www.cisa.gov/sites/default/files/2023-02/cloud_security_technical_reference_architecture_2.pdf
  144. https://growth-onomics.com/challenges-multi-cloud-vendor-lock-in/
  145. https://care.acronis.com/s/article/56172-Acronis-Backup-Service-Initial-Seeding?language=en_US
  146. https://campus.barracuda.com/product/echoplatform/doc/93199402/about-initial-seed/
  147. https://documentation.n-able.com/covedataprotection/USERGUIDE/documentation/Content/backup-manager/backup-manager-guide/seeding.htm
  148. https://syncromsp.com/blog/backup-3-2-1-rule/
  149. https://download.microsoft.com/download/C/6/B/C6BA6007-7BD1-46B7-8A4E-C559CE0472BA/MSFT-ECO.AZURE.VP-Handbook-PDF-2017-12-30.pdf
  150. https://www.arcserve.com/blog/optimizing-backup-and-recovery-deep-dive-data-deduplication-and-compression
  151. https://www.datacore.com/blog/inline-vs-post-process-deduplication-compression/
  152. https://github.com/lz4/lz4
  153. https://techcommunity.microsoft.com/blog/azuresqlblog/zstd-compression-in-sql-server-2025/4415418
  154. https://www.tencentcloud.com/techpedia/130312
  155. https://www.arcserve.com/blog/maximizing-storage-and-backup-efficiency-comprehensive-guide-deduplication-technologies
  156. https://i.dell.com/sites/csdocuments/Shared-Content_data-Sheets_Documents/en/uk/demystifying-deduplication.pdf
  157. https://www.dell.com/support/kbdoc/en-us/000003886/86266-understanding-datadomain-compression
  158. https://www.unitrends.com/blog/data-deduplication/
  159. https://bacula.org/whitepapers/DedupVolumes.pdf
  160. https://www.researchgate.net/publication/396805511_ADD-QIA_An_Adaptive_Data_Deduplication_Framework_Based_on_Quantum_Immune_Algorithm
  161. https://community.veeam.com/yara-and-script-library-67/encryption-key-management-with-veeam-11460
  162. https://www.veritas.com/content/dam/www/fr/documents/white-papers/WP_recovery_vault_security_V1537.pdf
  163. https://helpcenter.veeam.com/docs/vbo365/guide/data_encryption.html
  164. https://www.veritas.com/blogs/immutable-data-protection-fortress-veritas-alta-recovery-vault
  165. https://www.veritas.com/content/dam/www/fr/documents/white-papers/WP_veritas_alta_recovery_vault_security_V1537.pdf
  166. https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/security-policies/140sp4430.pdf
  167. https://docs.aws.amazon.com/fsx/latest/ONTAPGuide/encryption-at-rest.html
  168. https://aws.amazon.com/kms/faqs/
  169. https://aws.amazon.com/s3/features/object-lock/
  170. https://www.veeam.com/blog/air-gap-vs-immutable-backups-key-differences.html
  171. https://aws.amazon.com/blogs/storage/encrypt-aws-backup-logically-air-gapped-vaults-with-customer-managed-keys/
  172. https://www.cyberresiliencegroup.com/resources/the-colonial-pipeline-ransomware-attack-lessons-learned-and-how-to-prevent-the-next-crisis
  173. https://www.seifert.com/ransomware-readiness-a-step-by-step-guide-to-protecting-your-business
  174. https://www.rubrik.com/blog/technology/25/8/immutable-backups-the-secret-to-outsmarting-ransomware-and-ensuring-data-integrity-in-government
  175. https://blocksandfiles.com/2025/10/16/rubriks-immutable-backups-can-provide-malware-threat-intelligence/
  176. https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-53r5.pdf
  177. https://www.cio.gov/assets/files/Zero-Trust-Data-Security-Guide_Oct24-Final.pdf
  178. https://hoop.dev/blog/nist-800-53-audit-log-compliance-how-to-collect-store-and-protect-your-logs/
  179. https://csf.tools/reference/nist-sp-800-53/r5/au/au-10/au-10-3/
  180. https://www.rubrik.com/content/dam/rubrik/en/resources/white-paper/rwp-recovering-fast-from-ransomware-attacks.pdf
  181. https://documentation.commvault.com/v11/commcell-console/data_multiplexing_overview.html
  182. https://www.veritas.com/support/en_US/doc/21414900-146141073-0/v19528360-146141073
  183. https://documentation.arcserve.com/Arcserve-Backup/Available/R17/ENU/Bookshelf_Files/HTML/admingde/how_multiplexing_processes_back_up_data.htm
  184. https://www.veritas.com/support/en_US/doc/18716246-142505646-0/v41614979-142505646
  185. https://docs.oracle.com/cd/E19114-01/sol.backup51/805-3795/6j3jtvjo0/index.html
  186. https://www.veritas.com/support/en_US/doc/150157642-165935937-0/v41615009-165935937
  187. https://help.sap.com/docs/SAP_BW4HANA/107a6e8a38b74ede94c833ca3b7b6f51/9d76dae79ab047099ee81b50208d5945.html
  188. https://docs.netapp.com/us-en/occm38/concept_data_tiering.html
  189. https://vox.veritas.com/kb/articles-backup-and-recovery/automated-disk-management-and-data-retention-in-backup-exec-dlm-or-data-lifecycl/809167
  190. https://www.veritas.com/support/en_US/article.100011865
  191. https://www.arcserve.com/blog/ai-powered-anomaly-detection-cyber-resilience-imperative-ransomware-defense
  192. https://documentation.arcserve.com/Arcserve-Backup/Available/R16/ENU/Bookshelf_Files/HTML/admingde/disk_staging_how_you_can_use_disk_staging_to_manage_backup_data.htm
  193. https://www.infoworld.com/article/2235999/shrink-your-backup-window.html
  194. https://www.techtarget.com/searchdatabackup/tip/Backup-scheduling-best-practices-to-ensure-availability
  195. https://runcloud.io/blog/cron-jobs
  196. https://docs.cloud.google.com/backup-disaster-recovery/docs/concepts/policy-specific-best-practices
  197. https://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_backup_best_practices.html
  198. https://hoop.dev/blog/how-to-configure-ansible-veeam-for-automated-reliable-backup-workflows/
  199. https://www.veeam.com/sys407
  200. https://docs.ansible.com/ansible/latest/collections/amazon/aws/backup_plan_module.html
  201. https://serverfault.com/questions/208626/event-triggered-backup-systems-what-are-my-options
  202. https://helpcenter.veeam.com/docs/agentforwindows/userguide/scheduled_backup_events.html
  203. https://community.commvault.com/self-hosted-q-a-2/plans-how-do-i-stagger-backups-3272
  204. https://forums.veeam.com/veeam-backup-for-microsoft-365-f47/staggering-start-times-t86570.html
  205. https://sparkco.ai/blog/ai-backup-automation-enterprise-blueprint-for-2025
  206. https://www.veeam.com/blog/ai-ml-enhanced-backup-recovery.html
  207. https://www.handybackup.net/backup-scheduling.shtml
  208. https://docs.aws.amazon.com/prescriptive-guidance/latest/security-best-practices/monitor-alert.html
  209. https://learn.microsoft.com/en-us/azure/backup/backup-azure-monitor-alerts-notification
  210. https://www.veeam.com/blog/siem-integration-with-backup.html
  211. https://www.keepit.com/blog/microsoft-sentinel-integration/
  212. https://forums.veeam.com/veeam-agent-for-windows-f33/automatic-retries-t87940.html
  213. https://learn.microsoft.com/en-us/answers/questions/469893/azure-backup-failure-retry-using-automation
  214. https://www.backblaze.com/blog/5-ways-event-notifications-strengthens-your-backup-strategy-automatically/
  215. https://backup.education/showthread.php?tid=7920
  216. https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-34r1.pdf
  217. https://www.seagate.com/blog/7-reasons-to-backup-your-media-offsite-and-onsite/
  218. https://www.tegodata.com/blog-3-2-1-backup-strategy-rpo-rto/
  219. https://aws.amazon.com/blogs/mt/maximizing-multi-region-resilience-with-aws-resilience-hub/
  220. https://aws.amazon.com/blogs/mt/guide-to-aws-cloud-resilience-sessions-at-reinvent-2025/
  221. https://www.techtarget.com/searchdatabackup/tip/What-is-electronic-vaulting
  222. https://sk.sagepub.com/ency/edvol/encyclopedia-of-crisis-management/chpt/electronic-vaulting
  223. https://commission.europa.eu/law/law-topic/data-protection/rules-business-and-organisations/obligations/what-rules-apply-if-my-organisation-transfers-data-outside-eu_en
  224. https://commission.europa.eu/topics/cybersecurity/nis2-directive_en
  225. https://www.snia.org/sites/default/files/2025-03/SNIA-Data-Protection-Best-Practice-2025-01-27-v2.pdf
  226. https://www.geeksforgeeks.org/system-design/data-integrity-in-distributed-systems/
  227. https://www.level.io/blog/resilient-disaster-recovery
  228. https://www.usenix.org/publications/loginonline/running-disaster-recovery-plan-tabletop-exercises
  229. https://invenioit.com/continuity/data-loss-statistics/
  230. https://www.vinchin.com/tech-tips/system-image-vs-backup.html
  231. https://www.impactmybiz.com/blog/disaster-recovery-stats/
  232. https://phoenixnap.com/blog/disaster-recovery-statistics
  233. https://www.arcserve.com/sites/default/files/2022-09/ebook-best-practices-for-data-protection.pdf
Add your contribution
Related Hubs
Contribute something
User Avatar
No comments yet.