What is encryption at rest?

Encryption at rest protects stored messages on a server’s disk. If someone gains unauthorized access to the server, the encrypted data remains unreadable without the correct keys.

This is typically implemented through Transparent Data Encryption at the filesystem or database layer. It is not the same as true end to end encryption, because the server holds the keys.

It is the strongroom inside the harbor fortress where sensitive cargo is locked away. Providers use this to safeguard long term archives and backups.