While OS-level access control can offer some security over the flowfile attribute and
content claim data written to the disk in a repository, there are scenarios where the data
may be sensitive, compliance and regulatory requirements exist, or NiFi is running on
hardware not under the direct control of the organization (cloud, etc.). In this case, the
flowfile repository allows for all data to be encrypted before being persisted to the disk.
For more information on the internal workings of the flowfile repository, see NiFi In-Depth - FlowFile Repository.