| 主权项 |
1. A computer-implemented method for providing access to different states of a data set, comprising:
under the control of one or more computer systems configured with executable instructions, storing a data set among a plurality of data blocks of a storage volume; performing write operations that change at least a subset of the plurality of data blocks; generating block-level captures of the data set, each block-level capture having a corresponding capture time and each block-level capture representing a state of the plurality of data blocks of the storage volume at the corresponding capture time; for a particular capture time corresponding to a particular state of the plurality of blocks and to a particular capture of the data set, using the particular capture to configure a forensic storage volume in a state corresponding to the particular state, the forensic storage volume hosted by a provider of a computer resource, a customer using an application programming interface (API) to specify information related to the particular capture time; providing, to a user, access to a computing device in a manner allowing the user to select a different capture time, the different capture time corresponding to a different capture and to a different state of the plurality of data blocks; and providing, to the user, access to the computing device, the computing device having access to the changed forensic storage volume. |
