Yes, this use case provides nothing extra for data at rest. The idea to is minimize the impact of encryption on my users. Right now, they are having to remember to encrypt a document when they email it to an outside address. File encryption before emailing should always happen and I don’t like the idea of unencrypted files (they could be very bad for our company if someone happened to scan and skim an unencrypted document).
My thinking is that if all files are encrypted by default, then the users will decrypt to exe when they need to send a file to external entity. This makes it so that users can’t accidentally forget to send the file encrypted. That’s what I’m really trying to solve currently. Data at rest is OK for us currently.