Data-at-Rest Encryption uses Self-Encrypting Drive (SED) technology to secure all data stored on the DXi. This includes file data and metadata, configuration files, and the DXi software and operating system. When Data-at-Rest Encryption is enabled, all hard drives in the DXi are paired with the disk controllers using encryption keys. After this, accessing data on the drives requires the same encryption keys and controllers that were used to write the data. This ensures that a drive that is physically removed from the DXi cannot be read using another system or device.