Security-wise: encryption at rest? In high security scenarios you may be required to shutdown so you're forcing "attackers" to go through several layers: motherboard password, disk password, encryption password, OS user password + 2FA, etc.