While OS-level access control can offer some security over the flowfile content data
written to the disk in a repository, there are scenarios where the data may be sensitive,
compliance and regulatory requirements exist, or NiFi is running on hardware not under the
direct control of the organization (cloud, etc.). In this case, the content repository
allows for all data to be encrypted before being persisted to the disk. For more
information on the internal workings of the content repository, see NiFi In-Depth - Content Repository.