nvm, looks like the encryption key is derived from password, stored on the server side encrypted with these passphrases