alt Hacker NewsEncrypting data at rest is security theatre right? Unless consumers control the keys (which they generally dont want to), the keys will have to be accessible by the system storing the data. So if the system is compromised so are the keys? Like I cannot see the security benefits from encrypting data at rest in a non E2E system.
It's a whole lot easier to store the keys in a special hardened location than it is to store your whole storage.