The Schneier on Security blog, launched in 2004 at schneier.com, is the primary publication venue through which Schneier has sustained his influence as a public intellectual. Updated multiple times per week over more than two decades, the blog is among the longest-running and most consistently substantive security commentary venues on the internet. It is the medium through which Schneier engaged with current events, developed concepts that later appeared in books, and built and maintained his readership.
Nature and Format
The blog publishes several types of content: original short essays on security topics, commentary on news events (security incidents, policy developments, legislation), pointers to interesting research and news with brief Schneier commentary, and the squid-of-the-week feature — a Friday posting of a cephalopod image or video that began as a lighthearted counterpoint to the serious content and became a distinctive, beloved feature.
The original essays — typically 200 to 800 words — are where Schneier develops and refines ideas. Many concepts that appeared in later books first appeared in blog posts, often tested against the blog's substantial readership before being incorporated into longer arguments. The security-theater concept, the distinction between feeling-safe-vs-being-safe, and applications of threat-modeling to contemporary events were all developed through the blog.
The Blog as Intellectual Laboratory
The blog's format — frequent, topical, short — suits a particular kind of intellectual work: applying a consistent analytical framework to diverse incoming material, testing the framework against hard cases, and refining it in response to reader critique. Schneier's blog comments section was historically substantive, attracting other security professionals, academics, and technically sophisticated readers who pushed back and extended the analysis. Among the regular interlocutors and peers engaging with the blog's arguments was marcus-ranum, the firewall pioneer and security critic whose own commentary often ran in productive tension with Schneier's positions.
This function distinguishes the blog from the books. The books are synthetic and sustained; the blog is iterative and responsive. Schneier's intellectual development from security-commentator-era through trust-and-surveillance-era to systems-subversion-era can be traced through the blog more finely than through the books.
The crypto-gram-newsletter Relationship
The blog post and crypto-gram-newsletter are related but distinct. The newsletter predates the blog (it launched in 1998) and is a more curated, less frequent publication. When the blog launched in 2004, it did not replace the newsletter but complemented it. The newsletter is a longer-format, more edited collection; the blog is more immediate and lower-threshold. Essay collections like schneier-on-security-book and carry-on draw from both venues.
Scale and Influence
At its peak in the mid-2000s to early 2010s, Schneier on Security was one of the most widely read security commentary sites on the internet. Its influence extended to journalists (who used Schneier as a go-to source for security context), policymakers (who read him for analysis of technical security issues), and the broader security community (who engaged with his frameworks). The blog was nominated for and won various awards for security and technology writing.
The blog continues as of 2026, though the media landscape around it has shifted substantially. The blog's persistence across the transition from RSS readers to social media to newsletter culture reflects Schneier's commitment to maintaining an independent publishing venue not subject to platform intermediaries.