JP2002507016A - System and method for backing up computer files in a wide area computer network - Google Patents

Abstract

(57) Summary The laptop computer backup logic system (300) copies files selected by the user or automatically selected files for backup during use of the laptop computer. The changed files are backed up and stored in the hold area of the laptop computer (24). When the laptop computer (24) is connected to the network and detects that it is inactive, a block of the changed file is transmitted from the hold area to a device remote via the network (14). When the screen saver of the laptop computer (24) is invoked, a backup process can be activated on the laptop computer (24).

Description

DETAILED DESCRIPTION OF THE INVENTION       [0001] (Related application)   This application is related to U.S. patent application Ser. No. 09/10, filed on Jun. 19, 1998.
No. 0,914 is a continuation-in-part U.S. patent application. In addition, US patent application Ser.
No./100,914 is filed on Mar. 12, 1998, US patent application Ser.
No. 09 / 041,149 is a continuation-in-part U.S. patent application. This US Patent Application No. 0
No. 9 / 041,149 is a US patent application filed on Dec. 3, 1996
No. 08 / 757,134, which is a continuation-in-part of U.S. Pat.
No. 5,794,254, and priority is claimed from this time.       [0002] (Field of the Invention)   The present invention generally relates to computer file backup systems, and
The invention relates to an automated computer file backup system.       [0003] (Background of the Invention)   An enormous amount of information is stored in the hard disk drive of personal computers and its
It is stored on electronic media such as other well-known data storage media. like this
Information is increasingly and exclusively stored in these media in recent years,
For this reason, "hard" (ie, paper) copies no longer exist. Information on paper
So-called "paperless" information, in contrast to systems that need to be stored on top
The storage system requires less space and consumes more natural resources.
Never. Unfortunately, electronic data storage media "destroys,"
It is not uncommon for information to be damaged or lost. The loss of this information
Devastating and costly to information owners.       [0004]   Therefore, many computer system administrators have
Back up your copies regularly. Usually once a day (or other specific
System administrator) operates the computer system to
Copy files from the hard disk drive to other hard disk drives
Copies on a storage medium such as a frame or magnetic tape. Even if one file in the system
File or the entire hard drive is damaged and inaccessible.
File, for example, a file stored on a storage tape
Can be copied again.       [0005]   Such a backup system has several problems. First, these
According to the backup system, start the backup process, tedious and tedious work
User interaction, such as taking the time of a person in charge of the work. Further
Back up your computer files and back them up at the same location
The system that stores files can be used when a disaster such as a fire or flood occurs.
Not worth it. Because the backed up file copy is stored in the system
It is thought that the backup system will be destroyed together with existing files
This is because       [0006]   One example of an alternative backup system is US Pat. No. 5,479,654.
Disclose and modify computer files via modem to remote electronic storage
It is taught to transmit the done part. It's disclosed in the '654 patent
Changes made since the last backup
Are checked. This check is, first, The result of the so-called "exclusive OR" (XOR) of the file and the stored
Includes comparing previously required XOR values for backup versions
No. If the two XOR values do not match, it means that the file has been changed,
The changed part of the file may be a modem, LAN, WAN, or other network
Transmitted to a remote location via a network device.       [0007]   On the other hand, if the two XOR values match, a second, more area check is performed
, To detect if the segment has changed since the last backup.
In the second check, the cyclic redundancy check (CRC) of the segment and the last stored
Compare against CRC value. If the two CRC values do not match, the file has changed
Changed part of the file is a modem, LAN, WAN,
Or sent to a remote location via another network device. So
Otherwise, the segment has not changed since the last backup
Is assumed.       [0008]   Unfortunately, the system disclosed in the '654 patent requires two checks per check.
Requires calculations. Each calculation takes computation time, as recognized by the present invention.
And, consequently, to determine if there were any changes to the computer files
It is preferable to minimize the required number of calculations. In addition, it will be recognized here
Perform the first "quick and fraudulent" check, and check the area required for calculation
Can be reduced.       [0009]   Further, as recognized by the present invention, it manages data communication to remote storage devices.
Therefore, it is necessary to prevent one user from interfering with another user's operation. further
According to the present invention, some files are completely backed up in the first place.
It has been recognized that there is no need to step up. According to the invention, in one or more ways
Form restore file and restore lost files to computer system
The time required for this can be reduced.       [0010]   In addition to the above considerations, the present invention provides that when data is backed up at predetermined intervals,
Recognizes that backup data is formed at this interval and may be lost
are doing. Fortunately, according to the present invention, a user actively uses a computer.
Backup data over a wide area network when
Provides real-time and almost up-to-date data backup
be able to.       [0011]   In addition, if the data is communicated over a wide area network, is it for security reasons?
Preferably, the data is first encrypted. According to the present invention, the security
It has been recognized that the longer a single key in encrypted data is, the greater the risk of the key being broken.
Have been. For this reason, two or more keys are used to encrypt data.
Preferably. In the context of long-term backup,
Using two or more keys in a time interval is somewhat difficult
Akira is aware. This is because during the subsequent decryption, the correct encryption key
This is because it is difficult to associate the key with the original encrypted block.
However, as we recognize here, we make it easier to use more than one encryption key,
The risk of the encryption system can be reduced. The present invention additionally provides for each communication session.
It is preferable and possible to use a session-specific key for the session
, This unique key is used if each bit of the data being communicated is not logically known
Will not be broken.       [0012]   The present invention relates to a wrap that many people carry at work, from work, or while traveling.
Increased use of top computers or other portable computers
With a view. Laptop computer users often
Try to connect the top computer to the computer network. Network
Network system, for example, a simple home network with a single printer.
Or a local area network (LAN) at work
, Printers, server networks, and many other devices connected to a wide area network.
Network (WAN). In each case, the laptop
Computer users must reconfigure their computers each time they connect to the network.
It is recognized by the present invention that there is a need to For example, a specific printer,
Or a specific on the network where the laptop computer happens to be connected
Reconfigure the computer to communicate with another server. Portable computer
Reconfigure computers for every user connected to the network
It is tedious and time-consuming, and such restructuring is
The present invention recognizes that no user intervention is required to perform
I have.       [0013]   Regarding laptop computers, furthermore, laptop computers
Usually connected to the network continuously or at any regular interval in practice
Network, under certain conditions that the user's schedule allows.
Connected. Therefore, for the Internet, laptop computers
Planning and backing up data in advance is not the best solution
The present invention recognizes this. Rather, as understood here, the laptop
The computer is robust enough to occasionally connect to the Internet
Computer files backed up on a laptop computer
Needs to be sent. The purpose of the present invention is to address one or more of the above problems.
To be treated.       [0014] (Summary of the Invention)   The computer program product may be, for example, a portable laptop computer.
Computer programs that can be read by digital processing systems such as
It has a storage device. Logic on the computer program storage device
There is a means, and this logic means can be connected to a computer network.
From a band-enabled computer, in at least one local computer file
Perform method steps to back up at least some blocks
Having instructions executable by a digital processing system. This computer
The method steps performed by the program product include at least one script.
Receiving a screen saver signal; and responsive to the screen saver signal.
Preparing blocks to be backed up, and
Performing at least one of the steps of transmitting the
Having. In a preferred embodiment, the method steps are likewise defined
Data volume is backed up and the amount of unprotected data exceeds a certain threshold
Alert the user when one or both of the conditions exist
Have.       [0015]   In another aspect, the computer program product comprises a portable computer.
Has logic to determine at least blocks of computer files in the
I do. The program product may also be stored in a file on the portable computer.
Logic to access the system and access blocks to be backed up
Having means. Further, the logic means determines a block to be backed up.
Copy the block to the hold area of the portable computer in response to the
You. In addition, when a portable computer is connected to a computer network
Logic for judging points is provided. As described in detail below,
The packet determines when the data path of the network is inactive. data
When the path is inactive, blocks in the hold area are transferred through the network.
To a remote data storage device.       [0016]   The preferred logic is to block computer files in a portable computer.
If you decide that the lock should be backed up,
call. When a file change signal is received, the block is backed up to the hold area.
Can be When a data ready signal is received, the block is
Field to the network. This computer program product
, In cooperation with portable computers and networks.       [0017]   In another aspect, a computer program product comprises a digital processing system
Program storage device readable by computer and program means
On a program storage device. As the present invention intends, this program
System devices are realized inside critical mechanical components,
The processing system comprises at least one mobile phone connectable to a computer network.
From a possible computer in at least one local computer file
Perform method steps to back up one or more blocks.
Run. The method steps performed by the computer program product include:
Preparing the blocks to be backed up and the portable computer
Determining whether or not it has been connected to the network. Portable compilation
If the computer is connected to a network, one or more blocks
Enable transmission. According to the invention, this block contains other data to be transmitted.
Interleaved.       [0018]   In the above-mentioned applications, the local files to be backed up
Two statements each defining a first comparison value for at least some blocks
The letters are copied to form a digital signature code defining a second comparison value. Small
The test digital signature code is determined periodically for at least some blocks.
And compares it with each of the second comparison values. Block test digi
If the digital signature code does not equal all the second comparison values,
It is determined whether the first two characters are equal to one of the first comparison values. Conversely
, If the first two characters are equal to one of the first comparison values,
The digital signature code of the block, using the ith test byte as one byte
Is determined. Then, the digital signature code of the block is used to determine the value of the second comparison value.
Is determined, and the block's digital signature code is
If it is equal to one of the comparison values, reply "Resync". Otherwise, number i
If the first two characters of the first test byte are not equal to one of the first comparison values
Or the digital signature code of the block is equal to one of the second comparison values
If not, i is moved up by the unit element (1). This computer program manufacture
An object is disclosed in cooperation with a portable computer.       [0019]   If necessary, the computer program product is preferably connected to a network.
Network based on the presence and type of one or more devices connected to the
Determine the configuration and then correlate with the settings of at least one portable computer
Or you can have a relationship. Settings on the computer in response to the correlation step
Can be established.       [0020]   In yet another form, one or more of the portable computer's one or more computers
Back up one or more blocks of a file and net the blocks
A portable computer for transmitting to a remote computer storage location via a workpiece
Data backup system is a portable computer connected to a network.
Logic means for determining when is being performed. In addition, this system
Logic to determine whether the network availability is at least equal to a given availability
It has a locking means. Further, the logic means may satisfy one or more transmission criteria.
When adding, a block to be backed up is transmitted to the network.
This transmission criterion is based on the fact that the portable computer is connected to the network.
There may be.       [0021]   In yet another embodiment, backing up computer file blocks
The computer-implemented method for performing
To encrypt at least one block using one or more encryption keys
Become The method further includes storing one or more keys in a key file.
And transmitting this block to a remote data center.
I do. Next, the method removes this block from the data center during the recovery time.
Send to user computer and select one key from key file. this
If the block is decrypted with this key, the method succeeds
Determine whether or not. If the decryption was not successful, another key from the key list
To decrypt this data and repeat the steps above until decryption is successful.
Is repeated.       [0022]   In another embodiment, transmitting data between a sending computer and a receiving computer
How to provide a session key for the sending session to
Collecting the data digital signature and encrypting the data to encrypt the data
Utilizing digital signatures.       [0023]   In another embodiment, a user computer and at least one data storage device
A method for backing up data in a system, comprising: The data accompanying the user's computer
Determining whether it is present in the directory. This data is shared software
This data is not backed up if it exists in the wear library. so
Otherwise, this data must be at least
This data is automatically stored in the common software library if it exists in the
Will be added.       [0024]   The details of the invention, in structure and operation, are best understood with reference to the accompanying drawings.
It will be appreciated that like reference numerals indicate like components.       [0025] (Detailed description of preferred embodiments)   Referring first to FIG. 1, a system, generally indicated at 10, is illustrated.
The system includes a server computer, referred to herein as a data center 12.
I do. The server computer is part of a computer network. Suitable
In the embodiment, the data center 12 is a computer called the Internet.
A part of the network 14 that is a modem, LAN, WAN or other network.
Connection with another computer on the network 14 via the network device 16
can do.       [0026]   As shown in FIG. 1, the data center 12 stores the accompanying common library 20.
Including an electronic data storage reservoir 18. Preferably, support the majority of users
In order to be able to scale this system 10, the data store 18
Has a capacity of several terabytes or, in fact, one petabyte. Data storage
The capacity of 18 is preferably 100 terabytes or more, and 500 terabytes.
More preferably, it is the above. The control module 22 includes a new
Controls the flow of data to and from data store 18 in cooperation with regular logic
I do.       [0027]   In accordance with the present invention, the common library 20 is widely distributed and serves a large number of users.
To store computer file blocks used by
And versatile. For example, the common library 20 is a well-known off-the-shelf personal
Copy of computer operating system, network browser, etc.
Can be stored. The common library 20 will be described later with reference to FIG.
As will be explained, they can be updated automatically. As the present invention intends
, The data storage reservoir 18 with the common library 20 is, for example, a magnetic tape,
Hard disk array, compact disk read-only memory (CD-ROM
), DASD array, or physical media in a suitable medium such as a floppy disk.
Can be configured.       [0028]   A plurality of user computers 24, for example, personal computers, portable
Computer or palmtop computer is the model for each user.
Through network 26 or other suitable network communication.
I believe. In the preferred embodiment, each of the user computers 24 includes software
And a backup module 28 realized by the backup module.
The module 28 guarantees the inventive step of the present invention. In another embodiment,
This backup module 28 is detached from the user computer 24,
Or should be understood to have access to it. More easily understandable
In order to do so, each of the user computers 24 has a CD-ROM drive mechanism 30.
Have. As will be appreciated by those skilled in the art, the user computer 24 may also be
, Video monitors, printers, and other output devices, as well as keyboards and
And other input devices.       [0029]   2 to 8 are implemented as computer program software,
2 shows a configuration of a backup module 30 of the present invention. It will be understood by those skilled in the art
As such, these drawings illustrate the computer program code that performs the functions of the present invention.
2 shows a configuration of a logic element such as an element or an electronic logic circuit. clearly
The present invention, in an essential embodiment, is realized by using a mechanical part.
A form that gives instructions to a digital processing device (that is, a computer) depending on the product
Logic elements having the following steps correspond to the series of functional steps illustrated in the drawings.
Run       [0030]   These directives may be stored in a core such as a programmed computer diskette.
Computer program including data storage media for establishing product May reside on a program storage device. Alternatively, these media
Magnetic tape, optical disk, conventional hard disk drive, electronic readout
Memory, or electronic random access memory, or other suitable data.
Can also be found on semiconductor devices such as data storage devices. Description of the invention
In a typical embodiment, the logic means comprises C⁺⁺The computer described by the language code
This is a command that can be executed by the data.       [0031]   Referring now to FIG. 2, the initialization process can be understood. This
The process begins at a start state 32 for each user computer and proceeds to block 3
Move to 4. At this time, the file index counter “j” is a unit element.
It is set to be equal to (1). Proceed to decision diamond 36, which will be explained later.
The so-called “Message Digest Five (MD5) ) "Code, a copy of the jth file is already in the common library 20
Determine whether it is memorized. This is the same as MD5 of the j-th file
By comparing the MD5 of the file in the library 20 with each file,
Can be done. For each file stored in the common library 20,
One of the MD5 of the file in the common library 20 matches the MD5 of the file.
If so, the process proceeds to block 38 where the file is
Flag the file as being in the common library 20. Accordingly
Thus, not all of the majority of candidates are transmitted to the data center 12.       [0032]   Alternatively, the MD5 of each block of each j-th file and the MD5 of the common block MD5
By comparing the lists, the MD5 list of the common library in the common library 20 is added.
Flag the file only for blocks that have an MD5 that matches the MD5
By standing up, greater granularity can be achieved . Therefore, the majority of the candidates are not transmitted to the data center 12.
When the j-th file exists in the user computer 24, the j-th file
If the file is changed from the common existing version in the common library 20, the change
The detected part is detected, and the subfile increment described later with reference to FIG.
It should be understood that the data is sent to the data center 12 during the client-based procedure.       [0033]   In any case, if the common library 20 is used, many personal computers can be used.
On most personal computer systems.
Very large numbers of off-the-shelf computer hardware that require backup if not
It will be appreciated that the need to send files to the data center 12 can be avoided.
. In other words, using the common library 20, the user computer 24
The time and effort to make the first copy of the file can be reduced.       [0034]   In addition, at block 38, a list of comparison values for each block is stored.
This list was flagged as being in the common library 20
Each i-th block of each j-th file (where "i" is the block index
Counter. ). The first entry is
The first two characters of the first byte of the i-th block ("XX_i"). Symmetrically, The second entry is a data as a value that uniquely defines the content of the i-th block.
Digital signature ("MD5"). The first entry is the first comparison value, the second entry
Form a second comparison value.       [0035]   As described above, in this preferred embodiment, the digital signature used
"Message Digest Five (128-bit)
MD5: message digest five) code. As recognized by the present invention In addition, the MD5 code of a block is large even if there are very few changes in the block.
Change. The digital signature according to the invention is preferably a checksum, a cyclic redundancy code.
, And so-called "exclusive OR" codes,
Be more sensitive.       [0036]   From block 38, the logic proceeds to decision diamond 40, where the user computer 2
Determine if the last file in 4 has been inspected. Last file inspected
If so, the initialization process ends at state 42. Otherwise, this
The process proceeds to block 44 and increments the file index counter "j" by one.
The process returns to decision diamond 36.       [0037]   In contrast, in decision diamond 36, the ith block of the jth file
Is not in the common library 20, the logic
Go to 46 and copy each copy of the i-th block where the j-th file does not exist
The data is transmitted little by little to the data storage 18 of the center 12 (trickle). copy To send a little bit (trickle copy)
This means that the data is transmitted to the data center 12 during a predetermined transmission period. Fa
Until all non-existent parts of the file have been sent or the send period has expired.
This transmission period is referred to herein as a “window”. Alternatively, see FIG.
As will be described later, the user computer 24 is connected to the network
If the connection is online, the data to be backed up
When input to the computer 24, it can be transmitted in real time.       [0038]   The transmission period elapses before all nonexistent parts of the file have been transmitted
After each backup module 28 completes the transmission of a chunk, finish. If the transmission is interrupted during the transmission period, the module 28
Since the value of the lock index counter “i” is stored,
Transmission can be resumed from there. At the beginning of the next transmission period,
The up module 28 converts the block index counter “i” into an identity (
The transmission of the i-th file that was interrupted last time is started by moving up only by 1). In FIG.
As shown, at block 46, the ith XX_iAnd MD5_iBro about
A per-lock list is created as described above with reference to block 38. this
Logic proceeds from block 46 to decision diamond 40 and functions as described above.       [0039]   Referring now to FIG. 3, a subfile incremental backup log
A lock is shown. As intended by the present invention, periodically (eg, one day
Backup module 28 of each user computer 24
The process detailed below is performed.       [0040]   Starting at decision diamond 48, a predetermined backup period selected by the user is started.
To determine if they have been If so, the process proceeds to block 50.
In each j-th file specified by the user,
Then, a DO loop is entered. Thereafter, the process proceeds to block 52 where the block
DO loop for each i-th block of the j-th file selected in
to go into.       [0041]   Proceeding to a block 54, the backup module 28 determines that the i-th block
Digital Signature MD5 to be Struck_i ^newIs calculated. Next, in decision diamond 56,
Digital signature MD5 to be tested for i-th block_i ^newIn FIG. 2 as described above.
Digital signature MD5 stored in the formed list_i ^oldCompare with       [0042]   Digital signature MD5_i ^oldIs a list having an order from i = 0 to i = n.
Where n is the number of digital signatures in the list. i-th
Eye block tested digital signature MD5_i ^newIs the first i in the list
Eye block digital signature MD5_i ^oldIs compared with, if not, then the order
Next digital signature MD5 in the list with_i ^old(That is, i-th + 1MD5^{ol d} ) And so on until a match is found, or until the end of the ordered list. It is. If a match is detected anywhere in the list,
The test is affirmative and the process moves to decision diamond 58. Also squirrel
When it is detected that a match has occurred at the l (el) -th position in the
MD5 of (i + 1) th block to be reset_{i + l} ^newBut first, MD5_{i + l} ^old,
That is, it is compared with the (i + 1) th element in the list having the order of the old digital signature.
Are compared. If no match is detected, the MD of the (i + 1) th block
5_{i + l} ^newIs then numbered (i + 1) in the list with the old digital signature order.
It is continuously tested against the digital signatures in the list after the eye element.       [0043]   Returning to the description of the i-th block, it is detected that the digital signature matches.
If this is the i-th block to be tested since recently backed up
Has not changed, and the process moves to decision diamond 58.
In decision diamond 58, the logic determines that the last block of the jth file is a text.
To determine if it has been tested and, if not already tested,
Loops back and calls the next ith block, as shown and detailed
, Calculate the digital signature. In other words, for the jth file to be tested
Repeat the index counter “i” one by one as long as the block remains.
increase. The process 54 loops back to block 54.       [0044]   On the other hand, if the last block of the jth file was tested,
In the decision diamond 60, the last file in the user computer 24 is tested.
To determine if the If not already tested, this process
Loops back and calls the next file, as described above,
Test the block. If the last file was tested, this process
Moves to the decision diamond 62.       [0045]   In decision diamond 62, whether the backup period has elapsed,
To determine if the restored backup window is still open
You. If the backup period has elapsed, the logic loops to decision diamond 48.
Back up and wait for the start of the next allocated backup period. Conversely, backup
If the loop window is still open, this logic
, 16 (or other network device such as LAN or WAN)
Thus, an attempt is made to establish transmission with the data center 12.       [0046]   At decision diamond 64, it is determined whether a transmission connection has been achieved. Send is connected
If not, the logic proceeds to block 66 where a predetermined timeout has been reached.
After waiting for a period of time (preferably 5 minutes), loop back to decision diamond 62, and
If the window is still open, try to reconnect. Either way, Yu
After all files in the user computer 12 have been tested, the user computer
It is determined that transmission has been established between the computer 12 and the data center 12.
If so, the logic proceeds to block 68 with all remaining updated
Blocks are encrypted, compressed (as described in more detail below), and
12 is transmitted. This process loops back from decision block 68 to decision diamond 48.
Click.       [0047]   Explaining the negation loop derived from the decision diamond 56, the i-th block
Digital signature matches any of the digital signatures stored in the list of blocks
If not, it means that the i-th block has been changed and therefore the i-th block
The backup is a candidate for backup. In addition, this process is
Resynchronize with the comparison value list for each check.       [0048]   Therefore, after a negative decision is made in decision diamond 56 (ie, this logic
When the block essentially responds with a "change block" signal), this logic
Move to step 70. At this time, for the k-th byte of the i-th block, DO
Enter the loop. "K" is an index counter initially equal to unity (1)
It is. Proceeding to decision diamond 72, the logic determines the kth byte to be tested.
The first two characters of the block starting with ("XX_k ^new)) Is the i number in the comparison value list
The first comparison value corresponding to the eye block (“XX^old)) . This list of comparison values contains the ordered digital signature MD5.^oldParallel to Please understand. As a result, there is no match in the first comparison, and the decision diamond 56
As in the test in, until a match is found or the end of the list is reached,
The next two characters XX in the list with the ordinal^oldFor XX_k ^newAre compared.       [0049]   If no match is found and the end of the comparison value list is reached, this logic
Proceed to diamond 73 and the end of the candidate block where the current kth byte is tested
Judge whether it is a byte. In other words, in decision diamond 73,
The logic determines whether the byte index counter "k" is equal to about 2048.
To determine If so, the logic proceeds to block 74 where the block
After incrementing the index counter "i" by the unit (1), this logic
The loop proceeds to decision diamond 58. In this case, all blocks to be inspected
And a flag is set to copy. In decision diamond 73, byte in
If the dex counter "k" is not equal to 1000, this logic
Then, “k” is moved up by the unit element (1), and in decision diamond 72,
Test the next byte in the ith block.       [0050]   However, in decision diamond 72, "XX_k ^newIs "XX^oldIs equal to If so, the logic proceeds to decision diamond 75. In judgment diamond 75
, The digital signature of the block having the kth byte to be tested as the first byte
The name MD5 is determined, and the second comparison value, that is, the matching statement in the comparison value list
Character XX^oldDigital signature MD5 corresponding to^oldIs compared to In decision diamond 56
Digital signature to be tested, if necessary to find a match, as well as a test
MD5 is the subsequent digital signature MD5 in the ordered list^oldAgainst tes Is If no match is detected, the logic proceeds to decision diamond 7
Go to 3.       [0051]   However, blocks that have the kth byte to be tested as the first byte
The digital signature MD5 of the task is, in decision diamond 75, the data in the ordered list.
Digital Signature MD5^oldIf it is determined to be equal to one of the Respond "synchronized" and move to block 76. In other words, judgment diamond 7
A positive test result at 5 indicates that this logic was backed up in the past
Find the old unchanged block and this logic will resync against the list of comparison values.
It means that.       [0052]   In block 76, the changed block (here, the "transmit block"
Also say. ) Moves to the "next chunk" file. block
At 76, the comparison value list tests the block in the next backup cycle.
The modified block used as the first and second comparison values during
Is updated to include the first two characters and the digital signature. Judgment diamond 78
To determine if the chunk file is full. Current
In a preferred embodiment, the size of the chunk file is 5 megabytes (5 MB).
When it is full.       [0053]   If the chunk file is not full, the logic returns to decision diamond 58.
Conversely, if the chunk file is full, the process proceeds to decision diamond 80.
Whether the backup period has expired, ie the allocated backup
Determine if the window is still open. This period has passed
If so, the logic loops back to decision diamond 48 to make the next allocation
Wait for the scheduled backup period to begin. Conversely, the backup window
Is still open, the logic proceeds to step 64 and
66, and when the transmission is successfully connected, this chunk is To the data center 12. This logic returns from block 82 to decision diamond 58.
You.       [0054]   FIG. 4 shows the logic that can restore a lost file to the user computer 24.
Is shown. As is evident here, the data center 12
File blocks are stored periodically (eg, weekly, monthly, quarterly, etc.).
From the storage 18 to CD-ROM discs, these discs are
To the same physical location as the user computer 24. Hereinafter, these C
The D-ROM disk is called "local backup system".       [0055]   At block 84, the user computer 2 in the data center 12
4 is downloaded from the data center 12.
It is. Next, at block 86, the ith block of the lost file
On the other hand, a DO loop is entered as follows. In decision diamond 88, file block
The requested version of the lock is on the local backup system It is determined whether it is above. If so, at block 90, the block
The disk is restored preferentially from the local backup disk. If not
For example, at block 92, the block is transmitted from data center 12 to modem 26.
, 16 are restored. This logic is performed at block 90 or block 92.
Loops back from and calls the next i-th block,
Continue this process until the files are restored.       [0056]   Referring to FIGS. 5-8, further inventive features of the present invention will be understood. Special
Referring to FIG. 5, the common software library 20 shown in FIG.
Starting at 00, it can be updated automatically. Block 1
At 00, the server (ie, data center 12 shown in FIG. 1)
For each digital signature MD5 code, with accompanying blocks received for
And execute a loop by moving to decision diamond 102, where the test
Whether the digital signature MD5 code to be stored is stored in the library 20 as a candidate.
To determine A specific digitally signed MD5 code is first used for any user
Received from computer. The result of the test at decision diamond 102 is negative
In some cases, the process naturally proceeds to block 104 where the candidate list is
The digital signature MD5 code is stored. In block 104, the test
Counter J for the particular digital signature MD5 code to be_MD5Is the unit (1) Is set to be equal to Proceeding from block 104 to block 106,
The next received digital signature MD5 code is called, and the process described above
5 is repeated as shown by the dashed loop-back line.       [0057]   Meanwhile, the digital signature MD5 code is received in advance from the user computer.
, That is, when the result of the test at the decision diamond 102 is positive.
, The process proceeds to block 108 where the digital signature MD5 to be tested is
J attached to the code_MD5Up by one. Digital signature MD to be tested Counter J attached to 5 codes_MD5Received from any user computer Not sent beforehand, or the digital signature MD5 code to be tested
Digitally tested whenever received from a user's computer
Counter J attached to signature MD5 code_MD5Can be moved up by one.       [0058]   Next, in decision diamond 110, the digital signature MD5 code to be tested is attached.
Accompanying counter J_MD5Is determined to be equal to a predetermined value “k”. this The process is a counter J_MD5Is not equal to the predetermined value "k", block 1 Loop back to 06 and, if equal, proceed to block 112 for the associated block.
Along with the digital signature MD5 code to be tested
Add to Lari 20. Thereafter, the process loops back to block 106.
Then, the next digital signature MD5 code is called.       [0059]   FIGS. 6A and 6B show a case where a user performs backup using a plurality of encryption keys.
Of the present invention, which can enhance security by transmitting data for
Show the features. Starting at block 114, at the user's computer, FIG.
Or blocks requiring backup selected by the steps described above in FIG.
Of each digital signature MD5 code is determined and attached to each data block.
This digitally signed MD5 code is then converted to a compression scheme widely known by those skilled in the art.
Compressed using principles. Proceeding to block 116, the MD5 code,
Data block is encrypted using a user-selected key on the user key list
. The process ends at block 120 at block 116, but with the transmission
It should be understood that the steps can be performed. Next, the user computer
Loses the data packet processed by the steps shown in FIG. 6A, for example.
Request to receive a copy of the data packet from data center 12
In this case, the user computer calls the steps shown in FIG. 6B. Block 12
Starting at 4, the user's computer sends a block from the data center 12 to store.
Block and perform the following steps for each block. At block 126
In addition, after selecting the first encryption key from the list, the computer blocks
At 128, the block is decrypted and decompressed. Proceed to decision diamond 130
In, the computer for the user, for example, as indicated by the data overflow,
Determine if decompression failed. If compression fails, this process
Proceeds to block 132, selects the next encryption key from the list, and then
Loop back to block 128 and attempt compression again.       [0060]   On the other hand, in decision diamond 130, it is determined that the decompression was satisfactorily performed.
If so, the process proceeds to block 136 where the packet data is decoded.
Extract digital signature MD5 code and data attached to block to be decrypted
By calculating the digital signature MD5 code of
Authenticate. At block 136, when performing this process, the digital signature
The name MD5 code is a 128-bit long code attached to data associated with a known position.
String, and as a result, easily remove this digitally signed MD5 code
The present invention is understood to be possible.       [0061]   In decision diamond 138, the calculated digital signature MD5
In block 136, the decrypted digital data extracted from the data is read.
Tal signature MD5 code is compared. In decision diamond 138, two digital
If the signature MD5 codes match each other, the key being tested is authenticated and this
The process responds at block 140 with the "exact key." Then bro
In the block 124, the next data portion is called. Two digital signature MD5
If the codes do not match each other, the process loops back to block 132
To call the next key in the key list of the user's computer.       [0062]   FIG. 7A provides a unique session-specific session key for encryption.
Here's how to do it. Beginning at block 142, for the entire series of data to be transmitted,
Digital signature MD5 code is calculated by the computer transmitting the data.
You. Proceeding to a block 144, the digital signature MD5 code is
Used as an encryption key for the session. Only 56 bits needed for key
If not required, a 128-bit data length is calculated using exclusive-OR (XOR) processing.
The half 64 bits of the digital signature MD5 code are combined. Resulting
The last 8 bits of the 64-bit string
You.       [0063]   From block 144, this logic is performed as indicated by "A" and "B".
Take two options. In particular, at block 146A, the digital signature
Block after being encrypted using MD5 code (or a part of it) as a random number
At 148A, the data is transmitted to a receiving computer. On the other hand, the session
The part of the digital signature MD5 code that functions as a key is
In step 146A, the digital signature MD5 used to encrypt the data
Part of the code) using traditional private / public key encryption principles.
Or more preferably, using the Diffie-Helman encryption principle. And transmitted from the transmitting computer to the receiving computer. That is, 146
In B, the transmitting computer uses the public key of the receiving computer to
The signature MD5 code can be encrypted. Then, at block 148B
And the receiving computer uses the private key to create this digitally signed MD5 code
Can be decrypted. As shown in FIG. 7A, block 150
Receiving the result obtained in step 148A and block 148B,
It can be decrypted using the D5 code session key.       [0064]   FIG. 7B performs the authentication steps illustrated in blocks 152-158.
This allows the data received at block 152 to be authenticated. Bird
In other words, at block 152, the receiving computer
The digital signature MD5 code of the data related to the decrypted data is calculated. next,
In decision diamond 154, the digital signature MD5 code
Is the digital signature MD5 code received and decrypted at block 148B.
Be compared. Only 56 bits of the XORed digital signature MD5 code are secure.
When used as a session key, the comparison at decision diamond 154 is
Key and the XOR of the digital signature MD5 code calculated in block 152
You can do this with the processed version.       [0065]   In any case, in decision diamond 154, the two digital signature MD5 codes are
If so, the session key being tested is authenticated and the process proceeds
At lock 156, respond that "transmission is authorized". Two digital
If the signature MD5 codes do not match, the process proceeds to block 158
, "Transmission error".       [0066]   Here, with reference to FIG.
Shows a method for backing up data. At this time, the user computer
Is online with the network and the user
I use. Beginning at block 160, the principles described above are used.
It is necessary to back up changed data blocks based on
As determined by the computer (without waiting for the backup start time, this process
Rather than constantly, in real time,
decide. ), The process moves to decision diamond 162. In judgment diamond 162
In this process, the user computer is, for example, as shown in FIG.
To determine if you are online with a good network. Online connection
If not, the process proceeds to block 164 and connects online.
The data to be transmitted when the data is transmitted is stored.       [0067]   On the other hand, in decision diamond 162, this process involves the user computer
If it determines that it is online with the network,
Proceed to diamond 166 and the central processing unit (CPU) of the user computer is busy
To determine if you are in a state. In particular, priority over the backup task shown in FIG.
Whether the task with the higher priority is processed and the CPU is busy
Judge whether or not. CPU has higher priority than this data backup task
If so, the process proceeds to block 168.
Until all blocks are sent or prioritize over backup task
Send blocks until the computer is occupied again to perform high tasks
I believe. If the block transmission is interrupted by a higher priority task,
The computer for the user performed the higher priority task and completed
At this point, return to this backup task to complete the data block transmission
I want to be understood. The logic then proceeds to block 169 to send.
Determine another block to be used, and use the user's computer for other tasks
When you are sending blocks in virtually real time.       [0068]   The loop between block 170 and decision diamond 166, and at block 168
The "busy" loop illustrates the principle of the above description. Size
At diamond 166, a request is made to perform an input task such as a key operation.
If the CPU is busy, such as when
Go to 0, wait for a predetermined period Δt, and try again at the decision diamond 166
. The length of At is very short, on the order of milliseconds or microseconds. Alternative
, This logic defines Δt which is essentially “CPU inactive”
If the CPU is not operating, the process proceeds to block 168 to transmit data.
You.       [0069]   For example, while performing a test at decision diamond 166, the CPU
Data input can be received via key input by a user. In that case,
The process continues at block 170 after waiting for the keystroke to be completed.
, Block 168 to transmit data. Thus, in one embodiment
Thus, this process is performed between CPU tasks supporting the user's request, for example,
Send backup data between one keystroke and the next. Furthermore, this
The process is changed by key input, determined as backup data, and
Data is written in substantially real-time as it is created by the computer user.
Remember, data transmission over the Internet.       [0070]   9 and 10 show that, for example, the user computer 24
If you are using a laptop or palmtop computer
2 illustrates the principle described above in a preferred embodiment of the invention. As detailed below,
According to the present invention, in the environment of a portable computer,
When the data is not connected to the network, the file blocks are copied,
When connected to the network, the copied blocks
Sent to the storage device.       [0071]   Beginning at block 180, the host portable computer is running.
This logic is used for all files on the user's computer.
Or only a set of files set by the user need to be backed up?
Consider whether. The user can, for example, include / exclude squirrels with wildcards.
A series of files for backup using inclusion / exclusion lists. If the file is set (eg, by directory),
A series of files is received. From block 182 or from decision diamond 180
There is no user-configured set of files, all files (or a set of
Default file) is a candidate for backup, and this logic
Proceeding to 184, according to the logic as previously described with reference to FIG.
Prepare a block in a unique chunk. As already explained, the user can
For other tasks, such as processing and creating slides for presentations
If a host computer is used, the backup process is invisible to the user.
It is implemented in a "background".       [0072]   Decision diamond 186 represents the logic according to the present invention, which logic is
On the computer to determine whether the specified storage space limit has been reached.
Monitor. As recognized by the present invention, what is up but network
Portable computers such as laptop computers that are not connected
Blocks to be backed up are duplicated and formed, which limits storage space.
In some cases. At this time, the steps in the decision diamond 186 are “background” processing and
If the user's storage capacity becomes full due to the intended backup process
It is not to be. In this preferred network embodiment
, Less than 5% storage capacity of host computer for backup
Used for Alternatively, the user sets a predetermined storage space limit.
If the storage space limit has been reached, the logic moves to block 188 and
For example, after sending a block to be backed up,
Until you delete the backup copy and free up additional storage space,
Suspend the backup process.       [0073]   Decision diamond 186 from block 188 or when the test result is negative
From this, the logic moves to decision diamond 190. As indicated by the decision diamond 190
The logic is that the host portable computer is connected to the network
Monitor if If no network connection is detected, this logic
Moves to block 192 and continues the backup process as described above,
Logically loop back to decision diamond 186.       [0074]   Conversely, when the logic detects a network connection, it determines if a decision diamond 194 is present.
This host portable computer is actively transmitting data as shown in
Judge whether or not. The host portable computer actively sends data
If so, this logic backs up the
The processing is temporarily suspended, and thereafter, the processing loops back logically to the decision diamond 194, and
Wait for data transmission to complete. If the host portable computer is not transmitting data
If so, the logic returns to block 192.       [0075]   The logic flow shown in FIG. 9 illustrates the principle of the present invention for explanation, and
In this case, the logic code may be an event waiting method, that is, the judgment diamond 1
To monitor the conditions represented at 86, 190 and 194
Please understand that it is good. Similarly, shown in the flow format of FIGS. 10 and 11
The logic is executed as event waiting mode code.       [0076]   Here, referring to FIG. 10, the back formed by the logic shown in FIG.
Logic for transmitting a block to be up is shown. Block 1
Starting at 98, the transmission logic opens when a network connection is detected.
Begun. In the preferred embodiment, blocks are available and network bandwidth
If allowed, the outgoing backup blocks are given priority,
When the host computer is connected to the network and the
If there is no traffic at all, or if using the network interferes with transmission
Then, the backup processing shown in FIG. 9 is executed.       [0077]   Moving to decision diamond 200, the logic prepares to send a block of data.
Judge whether or not is in place. If so, this logic will go to block 2
02, for example, to relevant metadata or other data to be transmitted,
Interleave this block. The purpose of this is
All forward pros made during the backup session to the body
Gless (forward progress) so that the transmission is
The benefits of the work completed up to the point at which it was stopped can be enjoyed. In this regard
In the process, this process is considered to be "striking" data, in which
Make the sending flow work at any point and still maintain a viable entity
Can be       [0078]   From block 200, the process moves to block 202 where the last actual
Define a “last block” to identify the blocks to be interleaved
You. Thereafter, the process moves to decision diamond 206.       [0079]   Decision diamond 206 is sufficient to send the backup data to the network.
It is determined whether there is availability of the network. In one embodiment,
In order for this logic to send backup data, network availability
Must be less than a predetermined set value for the overall availability, for example, less than 70%. So
If so, the logic moves to block 208 and sends the data. That's right
If not, the logic moves to block 210 where the network availability is determined.
Wait until the value becomes equal to or less than the set value, and use the resynchronization logic described above in FIG.
Resume process.       [0080]   In one preferred embodiment, the network is a local network
(LAN), operating system performance count
The determination in step 206 is performed using the data. For example, the operating
If the operating system is a Microsoft operating system,
Transmissions per unit time using the number of dynamic keys in the performance registry
The number of packets can be determined. This ratio depends on how busy the network is
Indicates whether it is in a state (ie, network availability). Or network
If the network is a wide area network (such as the Internet), the host computer
From the point when the data has been sent, the receiving computer
ledgement) using the round trip time to receive the network availability Represent. At this time, if the round trip time is short, the availability is high. Host computer
Is connected to the LAN connected to the WAN,
, The availability of one or both networks can be determined.       [0081]   FIG. 11 shows a portable computer connected in addition to the backup logic described above.
Automatically configure portable computers, preferably for connected networks
1 shows the invention to be configured. In particular, the present invention relates to specific printers, Network, Internet connection, and cost computer
Automatically reconfigure the portable computer to the storage resources of the
configures) allows the user to connect the host computer to the network
Eliminates the need to manually perform these time-consuming reconfiguration operations each time a connection is made
.       [0082]   Beginning at block 212, the present invention provides a list of devices for each network and
In both cases, the authentication list of the network (automatically or manually by the user)
Edit (with one input). For example, a workplace printer with a specific designation, a specific
A work server with a designated designation, an Internet connection with a designated designation, and
The user's workplace LAN with workplace storage resources having a specified designation
One network may be established. Home printers with specific designations as well
, Home server with specific designation, home internet connection with specific designation
To a user's home LAN with home storage resources having specific designations
Thus, a second network may be established.       [0083]   As intended by the present invention, a "network configuration"
What kind of device, what kind of printer, what kind of printer, etc.
Network. For each network configuration,
A series of host computer settings are stored and included. In other words, each net
For a work configuration, a series of host computer settings are correlated and
Can be printed on a network printer, for example
You. At block 212, the network configuration is stored.       [0084]   Moving to block 214, the present invention provides that the host computer connects to the network.
Detect the point at which it was continued. In block 216, the present invention determines what device
Detects whether the chair is connected to the network. Moving to decision diamond 218, this
Logic consists of the devices actually connected to the network and the stored network.
Compare with the network configuration. For example, if a match is detected within 90%
(That is, 9 out of 10 devices on the network have network configuration
When it is detected that it is in a single entry in the table), this logic
Move to lock 220 to set network settings that correlate with the matched network configuration
Therefore, the host portable computer is reconfigured. Network configuration detected
If the configuration does not match any of the stored network configurations, this process
Establishes the default settings in the host portable computer and determines
It ends from 8.       [0085]   Considering now FIGS. 12 and 13, computer 24 (FIG. 1)
Generally, when illustrated to be referred to as system 300,
Another about the logic for backing up blocks of computer files
An embodiment is shown. System 300 can be executed by computer 24
Logic command sequence. Then, this sequence is
Starting at 302, the computer's operating system starts.       [0086]   Moving to decision diamond 304, the computer is properly configured for backup.
To determine if it is. In other words, the current logistics existing in the software
It is determined whether the network is properly installed in the computer 24.
If so, the process continues at decision diamond 306 with the user or automatic
Whether any file is selected or specified as a backup candidate
Judge. "Backup candidate" means that it is located on a portable computer
Means some or all files and is subject to the backup algorithm
Backup candidates can be selected for further consideration. At this time
Exclude some (less important) files from consideration for backup
Thus, the processing speed can be increased.       [0087]   If no files were selected, the process proceeds to decision diamond 306
From block 306, the user enters this
The user must be able to select some or all of the files on the computer
The interface can run. Alternatively, at block 308
For backing up some or all files in your computer,
Can be automatically selected as a candidate. For example, at block 308,
Temporary Internet files are a good candidate for backup
And all files may be automatically selected.       [0088]   At decision diamond 306, at least some files were backed up.
If so, the process moves to block 310 and FIG.
Start the network interface detailed below with reference to 3.
You. Move to Plot 312 to start the network interface
The computer's file system is "hooked". "hook(
hook) means that this logic is the file system from which the computer 24 originally resided.
Means inserted into the code. In this way, any user can
This logic is invoked whenever you access the
Blocks in the file system for the use described with reference to FIG. 2 and FIG.
Can be detected.       [0089]   At decision diamond 314, the file system was successfully completed by system 300.
That the file system hook is accurate and cheap.
It is determined whether or not it is completely at the predetermined position. In that case, the logic
Moving to 316, enter a wait state for one of the two computer system signals
. First, at block 318, if a file change signal is received,
The logic moves to block 320 where the backup algorithm described above (eg,
The new file data is processed according to the algorithm shown in FIGS. 2 and 3).
Manage. In this way, based on the above-mentioned principle, it is processed as a backup block.
Blocks are referred to as “hold” areas in the portable computer.
Is copied into the internal data storage area. From block 320, the logic is
Loop back and have state 316.       [0090]   Meanwhile, at block 322, a computer shutdown signal is received.
, Or at block 314, the file system hook was successfully processed.
If not, or at block 304,
If it is determined that the computer is not properly configured,
Move to 324. At block 324, the file system hook ends.
. Moving to block 326, the egress signal is sent to the network interface shown in FIG.
After being sent to the face logic, at block 328 the "exit"
Is displayed on the computer monitor. This process is
At block 330, exit to the computer's operating system.       [0091]   Referring now to FIG. 13, the network interface logic is illustrated.
It is shown. The logic begins at state 332 and moves to decision diamond 334.
Whether network software is present on computer 24
Judge. If so, the logic moves to a first wait state 336, where 2
Wait for one of the two system signals. In block 338, the logic shown in FIG.
If an exit signal is received from the block, the process moves to block 340 where all steps are taken.
All existing networks are terminated, and the process returns to the logic of FIG. Conversely,
Lock 342 receives a signal indicating that network transmission has started
If so, the logic moves to the second wait state 344.       [0092]   This logic, in the second wait state 334, outputs one of three system signals.
Wait for. If an exit signal could be received at block 346, the logic
Moving to lock 340, it functions as described above. Also, at block 348,
If a signal indicating that the network has stopped can be received, the first standby state 33
Loop back to 6. Further, at block 350, the network
If a signal indicating the operation state can be received, the logic performs the third standby.
Proceed to state 352. “Inactive network” is described above with respect to FIG.
The data path on the network is inactive as measured according to
Means, preferably, data from the computer 24 to the network
Means a route, or, less preferably, another data route in the network
Means       [0093]   In a third wait state 352, one of four system signals
Wait for. If an exit signal could be received at block 354, the logic
Moving to block 340, it functions as described above. Also, at block 356
, When a signal indicating that the network has been stopped can be received, the first standby state 3
Loop back to 36. Further, at block 358, the network
If a signal indicating the operation state can be received, the logic waits for the second standby state.
Proceed to state 344 and wait for a network inactivity signal.       [0094]   As shown in FIG. 13, in block 360, the data in the hold area
May be received. Third standby state 35
In step 2, before receiving the other three signals,
(That is, the “network inactive” signal is still present or running
Data is transferred to a remote data storage device via a network
Sent. When a data ready signal is present and the third standby state 352
This logic remains in block 360 unless the other three signals are present.
You.       [0095]   Referring to FIG. 14, back up files from a laptop computer.
A "spartan" version for invocation is shown. At block 362
Starting, for example, a portable computer with files to be backed up
Receive an inactivity signal from the operating system. For example, block 3
Receiving the inactivity signal at 62 initiates the screen saver program
.       [0096]   In the example above, when a screen saver appears, this logic is
After that, the process moves to block 364 where the buffer is transferred according to the algorithm shown in FIGS.
Copy a file block for backup. In addition, FIG.
Gick performs two tests. First, in decision diamond 366, wrap
Is the amount of unprotected data in the top computer greater than the specified amount
Judge whether or not. "Unprotected" means that the user is
Is not automatically selected or changed since it was recently backed up in the past
Means blocks of data that have been (or have never been backed up)
I do. Similarly, in decision diamond 368, the data amount (hold
That is, the amount of data that is backed up but not transmitted) exceeds the predetermined amount
Determine whether or not. This predetermined amount depends, for example, on the capacity of the network.
There is also. In decision diamonds 366, 368, if either test is positive
If so, at block 370 the portable computer monitor
Above, for example, to send a block in the hold area,
A warning is displayed, indicating that the work should be connected.       [0097]   A computer in a wide area computer network illustrated and described herein
According to certain systems and methods for backing up data files,
The above mentioned objectives can be achieved. This is the current preferred practice according to the invention.
It is an embodiment and means an object widely implemented using the present invention, and is obvious to those skilled in the art.
It should be understood that other embodiments that are white are within the scope of the present invention. Accordingly
Accordingly, the scope of the present invention is not limited except by the appended claims.
, Components used in the singular are not explicitly described as "one or more"
Insofar, it is intended to mean "one and only one." [Brief description of the drawings]     FIG. 1 shows a computer file backup system according to the present invention.
1 shows a schematic diagram of a system.     FIG. 2 shows a flowchart of an initialization process.     FIG. 3 shows an incremental backup process for a subfile.
3 shows a flowchart for the above.     FIG. 4 is a flowchart of a restoration process.     FIG. 5 shows a process for automatically updating a common software library.
6 is a flowchart regarding the process.     FIG. 6A is a program for encrypting data to be backed up.
It is a flowchart regarding a process.     FIG. 6B shows backup data received from a data center;
5 is a flow chart for a process for decrypting.     FIG. 7A is a diagram showing a message required for data transmitted as an encrypted random number;
Using the comparison value of about (MD: message Digest) -5, from the user computer
It is a flowchart regarding the process transmitted to a data center.     FIG. 7B relates to a process for authenticating the data transmission shown in FIG. 7A.
FIG.     FIG. 8 shows a case where a user uses a computer and the computer is a wide area network;
Network connection to a remote data center
Flowchart on the process of continuously backing up the computer
It is.     FIG. 9 is a portable computer that is sometimes connected to a computer network.
Flow of the process of backing up computer files on your computer
It is a chart.     FIG. 10 transmits data formed by the logic circuit of FIG. 9;
It is a flowchart regarding a process.     FIG. 11 shows a portable computer connected to a computer network.
The process of automatically reconfiguring the portable computer when connected to
FIG.     FIG. 12 shows a backup of files on a laptop computer.
9 is a flowchart illustrating another logic process to be performed.     FIG. 13 shows a continuation of the logic circuit of FIG. 12;     FIG. 14 is a simplified laptop computer backup system.
2 shows a flowchart relating to the steps of the backup system.

────────────────────────────────────────────────── ─── Continuation of front page    (31) Priority claim number 09 / 239,475 (32) Priority date January 28, 1999 (Jan. 28, 1999) (33) Priority country United States (US) (81) Designated country EP (AT, BE, CH, CY, DE, DK, ES, FI, FR, GB, GR, IE, I T, LU, MC, NL, PT, SE), OA (BF, BJ , CF, CG, CI, CM, GA, GN, GW, ML, MR, NE, SN, TD, TG), AP (GH, GM, K E, LS, MW, SD, SL, SZ, UG, ZW), E A (AM, AZ, BY, KG, KZ, MD, RU, TJ , TM), AL, AM, AT, AU, AZ, BA, BB , BG, BR, BY, CA, CH, CN, CU, CZ, DE, DK, EE, ES, FI, GB, GE, GH, G M, HR, HU, ID, IL, IS, JP, KE, KG , KP, KR, KZ, LC, LK, LR, LS, LT, LU, LV, MD, MG, MK, MN, MW, MX, N O, NZ, PL, PT, RO, RU, SD, SE, SG , SI, SK, SL, TJ, TM, TR, TT, UA, UG, US, UZ, VN, YU, ZW (72) Inventor Fred W. McClain             United States 92014 California De             Le Mar, Silco Digueno No. 6886 F term (reference) 5B018 HA02 KA03 MA12 QA01                 5B082 DA02 DE06                 5J104 AA09 AA16 EA06 EA19 EA33                       LA06 NA02 NA03 PA07

Claims (1)

Claims 1. A computer program product comprising: a computer program storage device readable by a digital processing system; and at least one local computer from at least one portable computer connectable to a computer network. Logic means having, on a computer program storage device, instructions executable by a digital processing system for performing method steps for backing up at least some blocks in a computer file, the computer program product comprising: The steps of receiving at least one screen saver signal and preparing blocks to be backed up in response to the screen saver signal , And transmitting at least one of the steps of transmitting the block via the network. 2. The computer program product of claim 1, wherein the method steps include: one or both of a condition where a predetermined amount of data is backed up and a case where the amount of unprotected data exceeds a predetermined threshold. Providing a warning to the user when is present. 3. The computer program product of claim 1, wherein the method steps each define a first comparison value for at least some blocks in a local file to be backed up. Copying a character to form a digital signature code defining a second comparison value; periodically determining a test digital signature code for at least some blocks; Comparing with each other, determining whether the first two characters of the block are equal to one of the first comparison values if the test digital signature code of the block is not equal to all second comparison values. Computer program product further comprising the step of: 4. The computer program product of claim 3, wherein the method steps include: if the first two characters are equal to one of the first comparison values, the ith byte as the first byte of the test block. Determining a digital signature code of the block using the test byte; determining whether the digital signature code of the block is equal to one of the second comparison values; If equal to one of the second comparison values,
Respond "Resync", otherwise if the first two characters of the i-th test byte are not equal to one of the first comparison values, or if the digital signature code of the block is the second comparison value Computer program product, further comprising the step of setting i = i + 1 if not equal to one of the following, and repeating the selecting step. 5. The computer program product of claim 1, which cooperates with a portable computer. 6. A computer program product, comprising: logic means for accessing a file system in a portable computer to access blocks to be backed up; and logic means for copying blocks to a hold area of the portable computer. Logic means for determining when the portable computer is connected to the computer network; logic means for determining when the data path of the network is inactive; and a hold area when the data path is inactive. Logic means for transmitting the blocks of the above to a remote data storage device via a network. 7. The computer program product of claim 6, wherein logic means for determining at least blocks of computer files to be backed up in the portable computer, and logic for determining blocks of computer files to be backed up. Logic means for calling a network interface in response to the means. 8. The computer program product of claim 6, further comprising logic means for determining when the accessing logic means has successfully accessed the file system. 9. The computer program product of claim 6, further comprising: logic means for receiving a file change signal and backing up the block to a hold area by logic means for backing up the block. Computer program product. 10. The computer program product of claim 6, further comprising logic means for receiving a network transmission start signal. 11. The computer program product of claim 6, further comprising logic means for receiving the data ready signal and transmitting the block from the hold area to the network by the logic means for transmitting the block. A computer program product characterized by: 12. The computer program product of claim 6, cooperating with a portable computer. 13. The computer program product of claim 6, cooperating with a network. 14. A method for backing up a block of computer files residing in a portable computer, the method comprising the steps of: receiving a computer inactivity signal from the portable computer; Backing up blocks in a file system of the computer according to the above. 15. The method of claim 14, wherein the computer inactivity signal is established by a screen saver start signal. 16. The method of claim 15, wherein the user is alerted when one or both of a condition that a predetermined amount of data is backed up and an amount of unprotected data exceeds a predetermined threshold value. The method further comprising the step of: 17. The method of claim 14, wherein the backup program performs the method steps, wherein each of the first step is performed for at least some blocks in the local file to be backed up. Copying two characters defining a comparison value of and forming a digital signature code defining a second comparison value; periodically determining a test digital signature code for at least some blocks; And comparing each of the second comparison values with each of the second comparison values; if the test digital signature code of the block is not equal to all of the second comparison values, the first two characters of the block are Determining whether it is equal to one. 18. The method of claim 17, wherein the backup program performs further method steps, the method comprising: if the first two characters are equal to one of the first comparison values, Determining the digital signature code of the block using the i-th test byte as the first byte of, and determining whether the digital signature code of the block is equal to one of the second comparison values. , If the block's digital signature code is equal to one of the second comparison values,
Respond "Resync", otherwise if the first two characters of the i-th test byte are not equal to one of the first comparison values, or if the digital signature code of the block is the second comparison value Computer program product, further comprising the step of setting i = i + 1 if not equal to one of the following, and repeating the selecting step. 19. A method for backing up blocks of files residing in a laptop computer, comprising: determining which blocks to back up; and determining when the laptop computer is connected to a computer network. Determining when the data path of the network is inactive; and transmitting the blocks determined to be backed up to the remote data storage device via the network when the data path is inactive. Performing the steps of: 20. The method of claim 19, further comprising calling a network interface. 21. The method of claim 19, further comprising the step of receiving a file change signal and copying the block to a hold area in a laptop computer. 22. The method of claim 21, further comprising receiving a data ready file signal and transmitting blocks in the hold area from the hold area to the network. 23. A system for configuring a portable computer for a network to which the portable computer is connected, comprising: logic means for determining at least one other device on the network; Logic means for comparing to one or more predetermined configurations; and logic means for configuring a portable computer for a network if the network configuration matches at least one predetermined configuration. Method. 24. The system according to claim 23, wherein the setting of the predetermined portable computer has a correlation with each of the predetermined configurations, and when the network configuration matches the predetermined configuration, the means for configuring is configured. Establishing a setting on at least one portable computer. 25. A portable device for backing up one or more blocks in one or more files in a portable computer and transmitting the blocks to a remote computer storage location over a network. A computer backup system, comprising: logic means for determining when a portable computer is connected to a network; logic means for determining when network availability is at least equal to a predetermined availability; Logic means for transmitting a block to be backed up to the network when the transmission criteria are satisfied, the transmission criteria being that when the portable computer is connected to the network,
A system characterized in that the judging means makes a judgment. 26. The system according to claim 25, wherein the transmission criterion is that the determination unit determines that the availability of the network is less than a predetermined availability. 27. The system of claim 26, wherein the blocks are transmitted by interleaving the blocks using the metadata. 28. A computer program product, comprising: a computer program storage device readable by a digital processing system; and at least one local computer file from at least one portable computer connectable to a computer network. Logic means having, on a computer program storage device, instructions executable by a digital processing system for performing the method steps of backing up one or more blocks, wherein the computer program product executes the instructions. The method steps include forming blocks to be backed up, determining when the portable computer is connected to a network, and determining whether the portable computer is connected to a network. A computer program product comprising the steps of: allowing one or more blocks to be transmitted when connected to a network; and interleaving other data into the blocks for transmission. . 29. The computer program product of claim 28, further comprising temporarily suspending block backup if a predetermined storage capacity limit of the portable computer is reached. Product. 30. The computer program product of claim 28, wherein the method steps include suspending a block forming step when the portable computer is connected to a network and transmitting data to the network. And if not, further comprising performing a block forming step until all blocks determined to be backed up are formed. 32. The computer program product of claim 28, wherein the method steps transmit the block only if the portable computer is connected to a network and the availability of the network is below a threshold. A computer program product further comprising steps. 33. The computer program product of claim 28, wherein the method steps each define a first comparison value for at least some blocks in a local file to be backed up. Copying a character to form a digital signature code defining a second comparison value; periodically determining a test digital signature code for at least some blocks; Comparing with each other, determining whether the first two characters of the block are equal to one of the first comparison values if the test digital signature code of the block is not equal to all second comparison values. Computer program product further comprising the step of: 34. The computer program product of claim 33, wherein the method steps comprise: if the first two characters are equal to one of the first comparison values, the ith byte of the test block. Determining a digital signature code of the block using the test byte; determining whether the digital signature code of the block is equal to one of the second comparison values; If equal to one of the second comparison values,
Respond "Resync", otherwise if the first two characters of the i-th test byte are not equal to one of the first comparison values, or if the digital signature code of the block is the second comparison value Computer program product, further comprising the step of setting i = i + 1 if not equal to one of the following, and repeating the selecting step. 35. A computer program product, comprising: a computer program storage device readable by a digital processing system; and at least some blocks in at least one local computer file, and at least one block in a computer network. Logic means having, on a computer program storage device, instructions executable by a digital processing system for performing the method steps of backing up from a user computer, the method steps performed by the computer program product comprising: (A) transmitting the local file to a data center remote from the user's computer to form a remote version, the data center comprising: Computer program which is accessible via a network, has at least 100 terabytes of electronic storage capacity, and is transmitted to a data center only if the local file is not stored in the same copy as the local file Product. 36. The computer program product of claim 35, wherein the method steps include: (b) copying, for each of the blocks in the local file, two characters defining a first comparison value. Forming a digital signature code defining a second comparison value; and (c) periodically determining a test digital signature code for each block and comparing this to each of the second comparison values. (D) if the test digital signature code of the block is not equal to the second comparison value of the block, updating the remote version by identifying the block of the local file as a transmission block to be transmitted to the data center Steps to
(E) If the test digital signature code of the block is not equal to all the second comparison values, the first two characters starting with the i-th (i is a natural number) test byte of the block are the first of the first comparison values. Determining whether it is equal to one;
(F) determining the digital signature code of the block using the ith test byte as the first byte of the test block if the first two characters are equal to one of the first comparison values; Determining whether the block's digital signature code is equal to one of the second comparison values; and (h) if the block's digital signature code is equal to one of the second comparison values. Respond "Resync", otherwise (i) if the first two characters are not equal to one of the first comparison values, or if the digital signature code of the block is one of the second comparison values If not equal to one,
A computer program product, further comprising the step of setting i = i + 1 and repeating steps (e)-(i) above. 37. The computer program product of claim 35, wherein the method steps comprise: collecting transmission blocks in a transmission chunk; and transmitting the transmission chunk to a data center when the size of the transmission chunk is equal to a predetermined size. Transmitting the transmission chunk to the data center only during a predetermined period of time. 38. The computer program product of claim 35, wherein the method steps determine, for each local file block, whether a copy of the local file block is stored in a common file block library. A computer program product, further comprising the step of: performing the above step (a) only when a copy of the local file block is not stored in the common file block library. 39. The computer program product of claim 35, wherein the method steps include: at a data center, periodically copying a remote version onto a portable data storage medium; and on the portable data storage medium. Copy the remote version from the portable data storage medium if it is at least as up-to-date as the remote version stored in the data center; otherwise,
A computer program product, further comprising the step of restoring a local file by copying a remote version from a data center. 40. A system for backing up files in a user computer, comprising: a data center having a common library of computer data; a plurality of user computers remote from the data center and communicating therewith; Since any data block of the computer is included in the common library, it has common library logic means for determining that it is a common computer file block.
When the non-common computer file block is determined to be a non-common computer file block, and the non-common computer file block appears at least a predetermined number of times in the user computer, the non-common computer file block has a common library adding unit that adds the non-common computer file block to the common library Features system. 41. The system according to claim 40, wherein initialization logic means associated with each user computer and transmitting a file block other than the common file block to the data center; The block which has been changed since the time of backup is judged, and the sub-file increment type backup logic means and the sub-file increment type backup logic means which form a changed block signal in response to this are changed. A chunk transmission logic unit for transmitting only the block as a chunk having a predetermined size to the data center; a synchronization logic unit for synchronizing the sub-file incremental backup logic unit in response to the changed block signal; , Bro Logic means for creating a list of blocks of files stored at the data center in relation to the first two characters of the block and the digital signature of the blocks, the sub-file incremental backup logic means using this list. And performing a judgment function. 42. The system of claim 40, wherein when the non-common computer file block appears on at least a predetermined number of user computers, the non-common computer file block is added to a common library. System to do. 43. A computer-implemented method for backing up computer file blocks, comprising: (a) encrypting at least one block with one or more encryption keys on a user computer. (B) transmitting at least this block to a remote data center; (c) transmitting at least this block from the data center to a user computer during a restoration time; Selecting a key; (e) decrypting at least the block using the key; (f) determining whether the decryption was successful; and (g) not decrypting successfully. If you select another key from the key list, And decrypting steps (f) and (g) until decryption is successful. 44. The method of claim 43, wherein the block defines a block digital signature, the block is encrypted and decrypted to form decrypted data, and the determining step comprises: Determining the digital signature for the decrypted block; comparing the digital signature to the decrypted block with the block digital signature; and determining that the decryption was successful if the digital signature for the decrypted block is equal to the block digital signature. A method comprising the step of determining. 45. The method of claim 44, wherein the block is compressed before encrypting, the method comprising: decompressing the block; A method further comprising determining that the key is not a decryption key. 46. A method for providing a session key for a transmission session for transmitting data between a transmitting computer and a receiving computer, comprising the steps of: collecting a data digital signature based on the data; and encrypting the data. Utilizing the data digital signature. 47. The method of claim 46, wherein the data digital signature is collected by a transmitting computer, the method comprising: encrypting the data digital signature using a public key of the receiving computer; Transmitting the digital signature to a receiving computer. 48. The method of claim 47, decrypting the data to form decrypted data, determining a digital signature of the decrypted data, digitally signing the decrypted data, The method further comprising comparing the data digital signature to determine whether the data was successfully transmitted.