Trusted Files vs Security Policy

What’s the difference between having stuff sit in the Trusted Files List vs setting up a Security Policy aka Rules for an application instead? Is there any benefit to one over the other, I’ve always wondered about this.

I believe the trusted file is faster, and was added for performance over making Defense+ rules for each application. Each rule takes time to process, where the trusted files are a quick hash check.

Trusted files are faster to process and are good balance of security and performance. Rules allow tighter security at the cost of performance when the rule list gets large.