Use BOTH upper- and lower-case letters.

Use numbers and punctuation marks. The more randomly you place them in your password, the better.

Make your password between 8 to 20 characters long. The longer and more complex it is, the harder it is to crack.

Use at least one of these special characters: ! @ # $ % * ( ) - + = , < > : :

Make your password easy to remember, so you won't have to write it down. You need it to be easy for you to remember, but hard for anyone else to guess.

Create different passwords for different accounts and applications.

Change your passwords regularly, i.e. once in 90 Days.

Keep them to yourself. Avoid giving out your password to others. Once it's out of your control, so is your security.

Consider using a phrase or a song title as a password. This may help you to easily remember your password. For example, "Somewhere Over the Rainbow" becomes "Sw0tR8nBO" or "Smells Like Teen Spirit" becomes "sMll10nspT."

Make your password easy to type quickly. This will make it harder for someone looking over your shoulder to steal it.

Don't use "kec","kec123","kec12345", "123456", the word "password", or such weak passwords.

Don't use numbers in place of letters. For example, "Password" becomes "Pa55w0rd." Dictionary programs are also equipped to combat this technique.

Don't create a password of keys next to one another on the keyboard (asdfghjkl) or all one letter or number (aaaaaaaa or 444444444).

Don't use the same password for different accounts or applications. If one account is breached, the others will be at risk as well.

Don't create a password using your user name in any form (reversed, capitalized or doubled).

Don't use your name, or any other personal information that could identify you. This means pet names, son/daughter names, birth dates, phone numbers, license plates, car models or addresses.

Don't use any word found in a dictionary longer than three letters. Hackers use automated programs to crack passwords using special programs that scan for any word found in a dictionary. This includes any word spelled backwards.

Don't use dates to create a password (for example, AUguST2001).

Don't re-use any of your last 10 passwords.

Don't share your password with others.

Don't write them down and store them near your computer.

Don't provide your password—or any of your sensitive or confidential information—over e-mail or instant message. Think of an e-mail message or IM like a postcard. The information can be seen while it's traversing the Internet. Also, once you send an e-mail, you no longer control the information in it. It can be forwarded to other people without your knowledge or consent.

Don't enable the "Save Password" option if prompted to do so. Pre-saved passwords will make it easy for anyone else using your computer to access your accounts.

Don't walk away from a shared computer (such as lab computer, browsing centre computer) without logging off. This will ensure no other users can access your accounts.

Don't use sample passwords given on different Web sites.

Never tell your password to anyone (this includes close friends and roommates).

Never write your password down.

Never send your password by email.

Periodically test your current password and change it to a new one.

Clear history often to clear the cookies and saved passwords.

Logout every time you move away from your device.

Remove the Tick mark in the "Signin always" box.