There's a feature request about adding encryption to Data Store without having to use a Serialization or CipherProvider made by developers, with a same approach as the one that EncryptedSharedPreferences is used

https://issuetracker.google.com/issues/167697691

When we use CipherProvider we need to be really careful of how we are doing it, specially cause we want that our KeyStore be in charge of all the Keys, this is a really cool talk, hope this can give you some insights!

https://youtu.be/W3mwSnF1n50?t=35