Explore the evolution of web security over 15 years in this conference talk by Jeremiah Grossman, founder of WhiteHat Security. Delve into legacy issues, threat modeling, and vulnerability data while examining the changing landscape of cyber threats. Analyze broad statistics, time-to-fix metrics, and the concept of the "window of exposure" in application security. Investigate the growth of AppSec, the rise of cyber insurance, and the potential for security guarantees and product liability in the industry. Gain insights into risk reduction strategies and the importance of security assessments in today's digital landscape.