The userid should be 5 to 8 characters long and must contain only letters in the range a-z and digits. The first character must be a letter. Your userid should be based on your name. If possible, the family name or, when applicable, a middle name should be used. If you have a common family name, another choice could be the first character in the first name concatenated with the last name. First names, initials or funny aliases are normally unacceptable.
The password should be easy for you to remember so you do not have to write it down. It should be difficult for others to guess. Make it at least 8 characters long. It should consist of characters from at least 3 of the categories lowercase, capitals, digits or special characters. It should not contain your userid or name in any permutation. Dictionary words, possibly truncated or with a single pre- or appended character are also bad. To construct a seemingly random password you could pick a sentence and then make a password from the first character in each word.
When the password is entered the first time, only some basic checks will be done to it. However, we are continuosly running a password cracker. If that can determine your password you will receive an email with a request to change it and some further instructions.