Client-side encryption
The client generates a new AES 256 key and uses it to encrypt the file. This “file key” is, in turn, encrypted by a master key that is only retrievable with the user's password stored on the Coordinator, allowing the user to sign in and retrieve their keys from any device.