I don't know how many other OCW MIT courses you have done, but what I have observed is that MIT's approach to teaching seems to be to use a case study, like Kerberos in this lecture, to explain general principles, rather than the other way around, as is often the case in lesser universities. They have a long history of teaching non trivial concepts, and must have found that this approach is better pedagogically, and rather than starting the lectures with pure theory they have found that starting with something concrete works much better. MIT's goal is also to teach students how to think critically about systems, rather than just taking theory at face value. This is best accomplished with case studies. This approach is very obvious in the prereq for this course, the excellent 6.033. Why else do you think the professor asks so many questions, why this, why that, make students participate? It is so that students can discover, think about and learn general principles from a concrete example, rather than memorizing blindly. This kind of interaction is only possible during a lecture; you can learn theory by reading a book (or books), which by now should be obvious to you that you must do to complement the lecture. This lecture actually forms a continuum with the next lecture (SSL & HTTPS). Why start with a less familiar protocol, like Kerberos? The reason is that it deals with a simpler problem, at a smaller scale. Conclusion: this is lecture is not really about Kerberos, and the title is right. I want to stress this point, because it is crucial if you don't want to be disappointed by MIT OCW courses: MIT's philosophy is not to teach specific technologies or the latest fads, but rather to hammer in timeless principles that will be applicable to whichever technology happens to be in vogue. Once you understand the general principles well, learning the details by yourself is a walk in the park. If you don't like this approach then you should try other courses.

@@noguide manz sounds offended.

@@captain6876 Your comment is useless garbage

couldn't have said better, the system is designed to exhaust the idea of brute forcing. Afterall, how are you suppose to brute force a system that has rate limiting and account lockout policies let alone the other features.

They realise they aren't worthy. it's only fair ;)

This is MIT

See the Readings section for details: ocw.mit.edu/courses/electrical-engineering-and-computer-science/6-858-computer-systems-security-fall-2014/readings/. Best wishes on your studies!

www.reddit.com/r/iamverysmart/

www.nimh.nih.gov/health/topics/schizophrenia/index.shtml

Ikr