公开(公告)号：WO2022262928A1

公开(公告)日：2022-12-22

申请号：PCT/EP2021/065882

申请日：2021-06-14

Applicant: HUAWEI TECHNOLOGIES CO., LTD. ,  GUTMAN, Michael

Inventor： YOSUB, Shmoolik ,  YEGER, Asaf ,  SALZMAN, Shahar ,  SEGAL, David ,  NATANZON, Assaf

IPC: G06Q10/06 ,  G06Q10/06316 ,  G06Q10/0639

Abstract: A method of analysing productivity in relation to a data storage system, includes monitoring one or more files stored in the data storage system. The method further includes generating a change list of updated files and evaluating an extent of the changes made to each file in the change list over a predetermined period of time. The method further includes outputting a metric based on the extent of changes made as an indicator of productivity. The method enables accurate and holistic analysis of productivity of an organization or enterprise with granularity of a single user, teams, groups, or projects, and thus, provides concrete recommendations for self-evaluation.

公开(公告)号：WO2018149487A1

公开(公告)日：2018-08-23

申请号：PCT/EP2017/053320

申请日：2017-02-14

Applicant: HUAWEI TECHNOLOGIES CO., LTD. ,  YEGER, Asaf

Inventor： YEGER, Asaf ,  KUVENT, Aviv

IPC: G06F11/14

Abstract: An apparatus for dynamically scheduling a digital storage backup comprises at least one processor adapted to determine at least one backup parameter for a backup of a plurality of data blocks of a monitored non transitory storage. Determining the at least one backup parameter comprises: computing a storage classification for the plurality of data blocks according to a compliance of an amount of changes to a content of the plurality of data blocks with one or more threshold values, and determining the at least one backup parameter according to the classification.

公开(公告)号：WO2022228664A1

公开(公告)日：2022-11-03

申请号：PCT/EP2021/061091

申请日：2021-04-28

Applicant: HUAWEI TECHNOLOGIES CO., LTD. ,  SALZMAN, Shahar

Inventor： NATANZON, Assaf ,  YEGER, Asaf ,  GUTMAN, Michael ,  YOSUB, Shmoolik ,  SEGAL, David

IPC: G06F21/56

Abstract: A management server for managing the storage of files in one or more storage servers, comprises a catalog configured to store a first list of the files stored in one or more monitored servers amongst the storage servers. The first list comprises recording, for each listed file, an identifier, one or more storage locations, and a content information related to the content of the listed file. The management server further comprises a change detection module, a storage location selection, a scanning module, and a marking module. The management server is configured to detect a change on a given file, and select in the first list one storage location where a change has been detected for the given file. The management server performs effective antivirus scans which do not scan a duplicate file multiple times as in the conventional approach.

公开(公告)号：WO2021110241A1

公开(公告)日：2021-06-10

申请号：PCT/EP2019/083394

申请日：2019-12-03

Applicant: HUAWEI TECHNOLOGIES CO., LTD. ,  MOR, Yaron

Inventor： NATANZON, Assaf ,  KUVENT, Aviv ,  YEGER, Asaf

IPC: G06F3/06 ,  G06F16/174

Abstract: An advanced deduplication method, particularly with additional deduplication tier and a global server for deduplicating multiple storage servers are disclosed. The global server is configured to maintain information regarding a set of hash values, each hash value being associated with a data chunk of data stored in the global server and/or the storage servers. The global server is configured to receive, from one or more of the storage servers, a request to modify the information with respect to one or more hash values. The global server is further configured to accumulate and sort metadata related to the one or more requests, particularly the metadata comprises, for each request, a hash value indicated by the request and an indication of the storage server that sent the request. When the accumulated metadata reaches a determined size, the global server is configured to modify the information with respect to the one or more hash values, based on the accumulated metadata.

公开(公告)号：WO2021098968A1

公开(公告)日：2021-05-27

申请号：PCT/EP2019/082185

申请日：2019-11-22

Applicant: HUAWEI TECHNOLOGIES CO., LTD. ,  KUVENT, Aviv

Inventor： NATANZON, Assaf ,  MOR, Yaron ,  YEGER, Asaf

IPC: G06F21/56 ,  G06F21/55 ,  G06F21/62

Abstract: The present disclosure relates to the technical field of data decryption, particularly provides an automatic lineage-based decryption method after a ransomware attack. In this disclosure, a device for ransomware decryption is disclosed, and the device is configured to obtain a first backup image of user data at a first time point, T1, and a second backup image of the user data at a second time point, T2, wherein T2 is later than T1. The device is further configured to detect whether one or more files of the user data were encrypted by a ransomware between the time point T1 and the time point T2. Further, the device is configured to decrypt one or more files determined encrypted by the ransomware, using the first backup image and the second backup image.

公开(公告)号：WO2022199805A1

公开(公告)日：2022-09-29

申请号：PCT/EP2021/057517

申请日：2021-03-24

Applicant: HUAWEI TECHNOLOGIES CO., LTD. ,  YOSUB, Shmoolik

Inventor： NATANZON, Assaf ,  YEGER, Asaf ,  GUTMAN, Michael ,  SALZMAN, Shahar ,  SEGAL, David

IPC: G06F11/14

Abstract: Provided is a computer-implemented method of backup and restore in a network data storage system (200, 310). The method includes generating, at a predefined time interval, a series of one or more virtual snapshots including, for each item in the network data storage system: (i) a strong hash of the item data, and (ii) one or more metadata elements related to the item. The method includes, in response to a request to restore a particular item: (i) searching the series of virtual snapshots for all available sources of the particular item, (ii) identifying the best source for the particular item, and (iii) recovering item data for the particular item from the identified best source.

公开(公告)号：WO2022002405A1

公开(公告)日：2022-01-06

申请号：PCT/EP2020/068659

申请日：2020-07-02

Applicant: HUAWEI TECHNOLOGIES CO., LTD. ,  KUVENT, Aviv

Inventor： NATANZON, Assaf ,  MOR, Yaron ,  YEGER, Asaf

IPC: H04L29/06 ,  G06F21/56 ,  G06F21/53 ,  G06F21/566 ,  H04L63/1491

Abstract: The present disclosure provides a device for generating a honeypot for attracting ransomware, a device for using a honeypot for attracting ransomware, and a device for optimizing a honeypot for attracting and decrypting ransomware and corresponding methods. The device is configured to: obtain a first backup image of a user system at a first time point; create a first backup system based on the first backup image; run one or more ransomware kits on the first backup system; identify a first set of data structures in the first backup system that are attacked within a determined time period by the one or more ransomware kits; identify a first set of properties of the first set of data structures; and generate the honeypot based on the first set of properties.

公开(公告)号：WO2018033220A1

公开(公告)日：2018-02-22

申请号：PCT/EP2016/069717

申请日：2016-08-19

Applicant: HUAWEI TECHNOLOGIES CO., LTD. ,  STERNBERG, Michael ,  SASSON, Gil ,  YEGER, Asaf

Inventor： STERNBERG, Michael ,  SASSON, Gil ,  YEGER, Asaf

IPC: G06F9/44

CPC classification number: G06F9/4401

Abstract: The present invention is directed to a device and method, both arranged to support execution of a booting process. A requested data block processing unit of the device is configured to generate, during the booting process, a requested data block set, wherein each entry of the requested data block set comprises information on a data block, requested from a storage during the booting process. A pre-fetching unit of the device is configured, during the booting process, to pre-fetch, for each entry of a data block set, from the storage a data block, information on which is stored in the entry of the data block set, wherein each entry of the requested data block set comprises information on a data block, requested from the storage during a previously executed booting process. Further, the present invention relates to a correspondingly arranged computer program 10 product and to a correspondingly arranged computer-readable medium.

Abstract translation: 本发明针对一种设备和方法，两者均被设置为支持引导过程的执行。 该设备的被请求的数据块处理单元被配置为在引导过程期间生成所请求的数据块集合，其中被请求的数据块集合的每个条目包括在引导过程期间从存储器请求的关于数据块的信息。 设备的预取单元被配置为在引导过程期间为数据块集合的每个条目从存储器预取一个数据块，该数据块的信息被存储在数据块集合的条目中 其中所请求的数据块集的每个条目包括在先前执行的引导过程期间从存储器请求的关于数据块的信息。 此外，本发明涉及相应设置的计算机程序产品和相应设置的计算机可读介质。

公开(公告)号：WO2022128080A1

公开(公告)日：2022-06-23

申请号：PCT/EP2020/086478

申请日：2020-12-16

Applicant: HUAWEI TECHNOLOGIES CO., LTD. ,  MOR, Yaron

Inventor： NATANZON, Assaf ,  KUVENT, Aviv ,  YEGER, Asaf

IPC: G06F11/10 ,  G06F11/14

Abstract: A method for storing data in computer storage is disclosed. The method comprises storing data in computer storage, storing erasure code for the data in computer storage, storing a copy of the data in computer storage, and identifying the computer storage storing the erasure code for the data as available for storage of further data in result of the storing a copy of the data in computer storage. Storing erasure code for the data may advantageously allow recovery of the data in the event of corruption of the data. However, the erasure code disadvantageously consumes memory space. Identifying the memory storing the erasure code as available for storage of further data following storage of a copy of the data advantageously frees memory space for storage of further data.

公开(公告)号：WO2021104638A1

公开(公告)日：2021-06-03

申请号：PCT/EP2019/083040

申请日：2019-11-29

Applicant: HUAWEI TECHNOLOGIES CO., LTD. ,  MOR, Yaron

Inventor： NATANZON, Assaf ,  KUVENT, Aviv ,  YEGER, Asaf

IPC: G06F16/174

Abstract: An advanced deduplication method, particularly with additional deduplication tier is disclosed. In specific, the disclosure proposes a global server for deduplicating multiple storage servers. The global server is configured to maintain information regarding a set of hash values, each hash value being associated with a data chunk of data stored in the global server and/or the storage servers, and notify a first range of the hash values to the storage servers. The global server is further configured to receive, from one or more of the storage servers, a request to modify the information with respect to one or more hash values falling into the first range of the hash values. The global server is further configured to modify the information with respect to the one or more hash values falling into the first range of the hash values, based on the request received from the one or more storage servers. The disclosure further proposes a storage server for deduplicating at a global server.