Rails feature for encrypting model attributes at rest. Raised in Q&A about PII and data obfuscation. Sergyenko's view: if you must store sensitive data yourself, you have to encrypt it — encryption is hygiene. Obfuscation is a separate concern used for staging/dev/integration with different keys and fake data, so encryption and obfuscation don't interfere with each other.