Please tell me how kerberos solve below problem? if one knows your userID and send it to Authenticaton Server of kerberos and receive the TGS ticket. he can break the encryption off-line and capture the private key of that user.