Backups are simple, right? Copy files. Store them somewhere safe. Restore when things break.

For agents? Not even close.

Because agents aren’t just data. They’re:

• Credential-carrying — API keys, signing keys, tokens
• State-dependent — context, memory, pending actions
• Identity-bound — cryptographic keys that are the agent

Traditional backup strategies assume backups are read-only archives that sit dormant until disaster strikes. But agent backups are live attack surfaces. Every backup is a frozen snapshot of credentials, context, and identity.