Maybe you can derive the encryption key from a password. Most users should be able to handle that.