Schneier, Snowden & Doctorow on Estate Planning

Three Thinkers, Three Decades, One Useful Idea

If you've ever read anything serious about computer security, your reading list probably includes Bruce Schneier, Edward Snowden, and Cory Doctorow. They've written from different angles. Schneier from inside the security profession. Snowden from inside the intelligence community. Doctorow from inside the activist-writer tradition. Their politics differ, their tones differ, their books differ. The advice they converge on is remarkably consistent.

This post pulls that convergence into focus, because the same principles they've been writing about for 20 years — mostly aimed at people worried about state surveillance, mass data collection, and corporate overreach — turn out to be exactly the principles that apply to personal estate planning, which almost nobody thinks of as a security problem.

Schneier: "Security Is A Process, Not A Product"

Bruce Schneier has been writing about applied cryptography and security culture since the early 1990s. Applied Cryptography, Beyond Fear, Data and Goliath, and his ongoing Crypto-Gram newsletter are the corpus. His central claim, repeated in many forms, is that security is a process, not a product.

What he means is that you don't buy security. You practice it. You set up habits. You audit. You update. You change passwords. You patch. You review. The day you decide your security setup is "done" is the day it starts decaying.

This maps cleanly onto estate planning. A digital estate plan is not a will. It's not a one-time exercise. It's a continuously maintained system that has to be reviewed, updated, and pressure-tested over time. The accounts change. The beneficiaries change. The technology changes. The threat model changes.

Most people set up an estate plan once and forget about it. Schneier's framing would call that estate plan dead-on-arrival. The plan is the habit, not the document.

Schneier: "Movie-Plot Threats" And The Importance Of Prioritization

The other Schneier coinage worth knowing is movie-plot threat: the dramatic, low-probability, high-cost scenarios that capture imaginations but rarely materialize. The TSA spends billions on movie-plot threats. The terrorists you're really at risk from aren't smuggling shoe bombs.

The personal estate planning equivalent is the long, dramatic conversation about what happens if you're kidnapped, abducted by aliens, or held hostage in a foreign country, while the actual probable scenarios — you have a stroke at 67, your spouse can't get into your email — go unplanned-for.

Schneier's advice would be to put your planning effort proportional to the probability and impact of the scenario. The dramatic case is low-probability. The mundane case is high-probability. Plan for the mundane case first. Most of the value is there.

Snowden: Compartmentalization

Edward Snowden's Permanent Record is, among other things, an extended argument for compartmentalization — the practice of splitting your digital identity into separate domains that can't easily be linked.

Snowden's compartmentalization is more extreme than what most people need. Tor for browsing, Tails for serious operations, separate hardware for separate identities. The thread model is nation-state.

For regular humans, compartmentalization shows up in a softer form: don't put all your eggs in one Google account. Don't use the same password manager for personal and work. Don't have one email address that, if compromised, gives an attacker access to your bank, your health records, your tax history, your work, your photos.

This is a personal threat model insight. The blast radius of any one compromise is proportional to how compartmentalized your digital life is. The convenience of a single Google login that handles everything is the same property that makes the compromise of that login catastrophic.

For estate planning, compartmentalization shows up as a question: which set of credentials, in which order, would your family need to gain access to what?

Snowden: Operational Security Is Behavior, Not Tools

Snowden's most quoted line on this is something like "if you want to be private, you have to act privately." The tools matter, but the behavior matters more. The encryption is useless if you carry a phone that's constantly broadcasting your location. The pseudonym is useless if you log into it from your home IP.

For estate planning, the equivalent insight is that your tools are not your plan. You can have a password manager, a deadman switch, a will, a power of attorney, encrypted backups, the works — and still be hopelessly underprepared if you haven't actually told the people in your life how to use any of it.

The behavior is naming the people who need access, telling them they're named, telling them where to look, and rehearsing the basics. The tools are scaffolding. The behavior is the structure.

Doctorow: Adversarial Interoperability

Cory Doctorow has spent a career writing about the politics of computing — DRM, lock-in, platform monopolies. His pet term is adversarial interoperability: the practice of making your own software, your own services, and your own infrastructure work with platforms whether the platforms want you to or not.

The political point is that platforms shouldn't be allowed to lock you in. The personal-security point is that you should act as if the platforms have already done so, and architect your life to be resilient against being locked in or locked out.

For estate planning, Doctorow's framing implies: assume the platforms holding your data are hostile to your long-term interests. Maintain your own copies. Use open formats where possible. Don't make your inheritance plan depend on a specific cloud service's continued cooperation, because cooperation can be withdrawn.

This is the same lesson Archive Team teaches in different vocabulary: treat the platforms as mortal and your data as the thing that has to outlive them.

Doctorow: "The Coming War On General-Purpose Computing"

Doctorow's most famous talk argues that the long arc of computing is toward devices that appear to be in your control but are increasingly making decisions you can't override. Your phone's hardware refuses to run software it doesn't recognize. Your e-reader knows whether you've paid your subscription. Your car receives features over the air, and removes them.

The estate planning implication is direct: the devices and accounts your family will inherit are increasingly things that the device itself gets a vote on. Your iPhone has a Secure Enclave that won't let your spouse log in without your biometric or PIN. Your car may have account-based features that don't transfer. Your home's smart locks may refuse to recognize a new user without the original owner's account.

Doctorow's point applied to estate planning: the path to inheritability runs through devices and services that are increasingly built to resist exactly what you want them to do. Plan accordingly.

The Convergence

Three very different writers, agreeing on roughly the same set of principles:

Security is a process, not a state. A plan that isn't being maintained is not a plan.
Prioritize by probability. The dramatic scenario is rarely the real risk.
Compartmentalize. Don't let one compromise destroy everything.
Behavior beats tools. The best system in the world fails if no one knows how to use it.
Platforms are mortal. Don't build a plan that assumes their permanence.
The device itself is part of the threat model. Modern hardware makes decisions you can't override.

None of these were written with estate planning in mind. All of them apply to estate planning more cleanly than the standard estate planning advice does, because they originate from a tradition that takes the adversarial structure of computing seriously.

If you read these three writers — even one chapter from each — you'll come out of the exercise with a sharper instinct for what your personal threat model actually looks like than any number of generic "five tips for digital estate planning" articles will give you. The vocabulary, transplanted from political surveillance contexts, is honest about what you're up against in a way the inheritance industry mostly isn't.

The people who'll inherit your life are doing it in the same hostile computational environment Schneier, Snowden, and Doctorow have been warning you about. The lessons port more directly than you'd think.

Killswitch is the practice of the principles these writers describe: security as process, compartmentalized trust, behavior over tools, platform-as-mortal, identity-not-location. The architecture is the lesson, productized. Get started today