AFAIK

Your password is only one piece of the puzzle. The password you use tells the system how to configure a key to fit the lock. If the key generation mechanism or the cipher key itself is safe from attacks your account should be safe.

the cipher security is independent of whether you use a 3 letter or 20 letter password. Your password length only secures your password from being guessed.

In instances where the key (cipher key) is available publicly your security is compromised
In instances where the user accesspoint is publicly available and your password is leaked, you are compromised
In instances where key generation algorithm is publicly available, you are compromised
In instances where there is a middleman snooping on your network, you are compromised
If the front end is hidden and your key is visible, you are compromised

In any instance where your encryption key is hidden, you are safe.