HDFS data at rest encryption allows HDFS data to be stored in encrypted directories called encryption zones. All files within an encryption zone are transparently encrypted and decrypted on the client side, meaning decrypted data is never stored in HDFS.
You can enable this in your Hadoop cluster and then configure BDD to store its Dgraph databases, Avro files, and other data in encryption zones. This ensures that your BDD data will be safe even if HDFS is compromised.
For more information on configuring HDFS data at rest encryption for BDD, see the Installation Guide.