The Trojan horse defence – a modern problem of digital evidence

Abstract: The Trojan horse defence is an important aspect of the investigation of crimes involving digital evidence. In raising this defence, the accused claims that they are not responsible for some or all of the digital evidence that forms the offence, but by someone else who has abused their computer system with a Trojan horse or other malicious code. The prosecution must refute such claims with certainty, otherwise the court (or the jury) will have to find the defendant innocent of the crime.To avoid the Trojan hors… Show more

“…Also, the ability to detect defects and the implanting of malicious software is very poor. The following quotation is from an article dealing with the, "Trojan horse defence," i.e., defences against accusations of illegal materials found stored in a computer that assert that a malicious program, secretly contained within an obtained acceptable program was the cause of the implanting: 59 Daniel Bilar explains how antivirus programs work, and points out that a lot of malicious codes are not recognized by antivirus software that is not updated regularly. Between 26 and 31 per cent of malicious software is not detected on antivirus programs that are not up-dated for a week (this percentage is only valid for better antivirus programspoor quality antivirus programs can miss up to 80 per cent of malicious codes).…”

What a Law Society Should Be A Response to the Law Society of Upper Canada's Alternative Business Structures Discussion Paper of September 24, 2014

“…Also, the ability to detect defects and the implanting of malicious software is very poor. The following quotation is from an article dealing with the, "Trojan horse defence," i.e., defences against accusations of illegal materials found stored in a computer that assert that a malicious program, secretly contained within an obtained acceptable program was the cause of the implanting: 59 Daniel Bilar explains how antivirus programs work, and points out that a lot of malicious codes are not recognized by antivirus software that is not updated regularly. Between 26 and 31 per cent of malicious software is not detected on antivirus programs that are not up-dated for a week (this percentage is only valid for better antivirus programspoor quality antivirus programs can miss up to 80 per cent of malicious codes).…”

What a Law Society Should Be A Response to the Law Society of Upper Canada's Alternative Business Structures Discussion Paper of September 24, 2014

The first 10 years of the Trojan Horse defence

Electronic Records as Evidence