I am trying to start self studying of Enterprise Security Context, but always fe

Question

I am trying to start self studying of Enterprise Security Context, but always feeling kind of lost among all the specs and standards etc. Unlike software development, this really is a challenge as far as I felt so far. SAML, SSO, OAuth, XACML... there are plenty of stuff to learn about; but frankly I am not sure from where to begin, so that I would understand the possible security threats, and then learn these stuff as answers for them.

I would truly appreciate, if someone could suggest any blog, book or any other learning resource in order to learn the theories in Enterprise Security Context, so that I could grab the basics in a perfect manner. I assume that this is something that most of the people keep looking for.

Thank you.

Explanation / Answer

It may be that you need to narrow the scope a little in order to get started.

Which aspect of security are you interested in. From the list of standards, you seem more interested in application security & especially in authentication and authorisation?

That would be a much easier set of targets to learn at least to begin with.

Also, you may need to be aware of regional and sector differences in security requirements. Banking, health, US vs EU and so on. Each have important differences.

Having decided on a more focused approach, perhaps you could update the question to get some more specific advice?

Related Questions

Navigate

• Browse (All)
• Browse I
• Subjects

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.