Introduction

In the contemporary legal landscape, electronic evidence has become an indispensable facet of court proceedings, presenting unique challenges and opportunities for legal practitioners and adjudicators. With the pervasive use of electronic devices and digital communication platforms, questions regarding the admissibility, authenticity, and reliability of electronic evidence have assumed paramount importance within the Indian legal system. This comprehensive analysis endeavors to delve deeply into the intricate nuances surrounding electronic evidence in India, exploring pertinent statutes, landmark judgments, and emerging trends within the Indian legal framework.

Understanding Electronic Evidence in India: Foundations and Legal Framework

Electronic evidence encompasses a diverse array of digital data, including emails, text messages, social media posts, digital images, videos, and computer-generated records. Unlike traditional forms of evidence, electronic evidence poses distinct challenges due to its intangible nature, susceptibility to manipulation, and reliance on technological infrastructure. In India, the legal framework governing electronic evidence is primarily established by the Indian Evidence Act, 1872. While the Act recognizes statements in oral, documentary, or electronic form as admissible evidence under Section 17, the specific requirements and procedures for electronic evidence admissibility are delineated in Section 65B. Section 65B of the Indian Evidence Act mandates that electronic records, including computer-generated evidence, must be accompanied by a certificate to be admissible in court. This certificate, issued by a person occupying a responsible official position in relation to the operation of the relevant device, attests to the authenticity and integrity of the electronic record. Furthermore, the certificate must describe the manner in which the electronic record was produced, furnish particulars of the device involved, and comply with the conditions stipulated in Section 65B(2).

Landmark Judgments: Shaping the Discourse on Electronic Evidence in India

Landmark judgments play a pivotal role in shaping the legal discourse surrounding electronic evidence admissibility in India. One such seminal case is Shafi Mohammad Vs. The State Of Himachal Pradesh, where the Supreme Court provided seminal insights into the admissibility of electronic evidence, particularly in light of Section 65B of the Evidence Act. The court emphasized the importance of procedural compliance and the necessity of a certificate for electronic evidence admissibility, setting a precedent for subsequent cases. Another landmark judgment that merits attention is Anvar P.V. Versus P.K. Basheer & Ors, wherein the Supreme Court delved deep into the nuances of electronic evidence authentication. The court’s interpretation of Section 65B and its insistence on the indispensability of a certificate for secondary data admissibility underscored the significance of procedural rigor in electronic evidence proceedings.

Analyzing Email and WhatsApp Conversations: An Analytical Framework

The widespread use of email and messaging applications such as WhatsApp has presented novel challenges in electronic evidence admissibility. Courts have grappled with questions regarding the authentication, relevance, and admissibility of email and WhatsApp conversations as evidence. In cases such as Abdul Rahaman Kunji Vs. The State of West Bengal and Kundan Singh v. The State, courts have provided valuable elucidation on the application of Section 65B and the necessity of accompanying certificates for electronic evidence admissibility. Furthermore, the distinction between primary and secondary copies of electronic records assumes significance in determining admissibility. Courts have emphasized the need for primary evidence, such as original electronic records, to be accompanied by certificates issued under Section 65B. Secondary copies, including printouts or downloads, may also require certification to ensure their authenticity and reliability.

The Certificate Mandate and Its Implications

At the crux of electronic evidence admissibility lies the certificate mandated by Section 65B of the Evidence Act. This certificate serves as a crucial determinant of electronic evidence’s admissibility, attesting to its authenticity, integrity, and compliance with legal requirements. An in-depth analysis of Anvar P.V. vs. P.K. Basheer sheds light on the court’s interpretation of Section 65B(4) and its implications for parties seeking to produce electronic evidence.

Moreover, the certificate requirement underscores the importance of procedural rigor and technological expertise in electronic evidence proceedings. Courts must ensure that certificates are issued by competent authorities with relevant technical knowledge and expertise. Failure to comply with the certificate mandate may result in electronic evidence being deemed inadmissible, highlighting the need for meticulous adherence to procedural requirements.

Recent Developments and Emerging Trends

The rapid evolution of technology has brought about new challenges and opportunities in electronic evidence proceedings. Recent instances of leaked WhatsApp chats and social media posts obtained during investigations have highlighted the need for a robust legal framework governing electronic evidence admissibility. The Indian Evidence Act, 1872, and Section 65B have come under scrutiny in light of emerging technological trends and evolving jurisprudence. In the landmark decision of Arjun Panditrao Khotkar v. Kailash Kishanrao Goratyal, the Supreme Court provided seminal insights into the interpretation of Section 65B and its applicability to electronic evidence proceedings. The court clarified the distinction between primary and secondary evidence and emphasized the necessity of certificates for secondary copies of electronic records. Furthermore, the court underscored the importance of procedural compliance and technological expertise in electronic evidence proceedings.

Challenges and Future Directions

Despite significant progress in elucidating the legal framework surrounding electronic evidence, several challenges persist. The rapid proliferation of digital technologies, the voluminous nature of electronic data, and the evolving landscape of cyber threats pose formidable challenges for legal practitioners and courts alike. Issues such as data privacy, cybersecurity, and the authentication of electronic records continue to present complex challenges in electronic evidence proceedings. Looking ahead, it is imperative for legislators, legal practitioners, and technology experts to collaborate in addressing these challenges and adapting legal frameworks to the realities of the digital age. Efforts to streamline electronic evidence procedures, enhance technological infrastructure, and promote digital literacy among legal professionals are crucial steps in ensuring the effective administration of justice in the digital era.

Conclusion: Navigating Electronic Evidence in India

In conclusion, electronic evidence occupies a central position in contemporary legal practice, presenting both challenges and opportunities for legal practitioners and courts. Landmark judgments such as Shafi Mohammad and Anvar P.V. have provided invaluable guidance on electronic evidence admissibility, shaping the discourse surrounding this complex legal issue. The certificate mandate under Section 65B underscores the importance of procedural rigor and technological expertise in electronic evidence proceedings.

As society continues its inexorable march towards digitalization, it is essential for stakeholders to remain vigilant, adaptive, and proactive in addressing the challenges posed by electronic evidence. Efforts to enhance legal frameworks, promote digital literacy, and foster collaboration between legal and technological communities are essential in ensuring the effective administration of justice in the digital age. Through concerted efforts and a commitment to excellence, the Indian legal system can navigate the complexities of electronic evidence and uphold the principles of justice, fairness, and integrity in the digital era.

The post Electronic Evidence in India: Navigating the Legal Landscape – A Comprehensive Analysis appeared first on Bhatt & Joshi Associates.

The rapid evolution of digital technology has fundamentally transformed the landscape of legal proceedings in India. Electronic records now constitute a substantial portion of evidence presented before courts, ranging from emails and text messages to surveillance footage and call detail records. As digital devices proliferate and online transactions become ubiquitous, the authenticity and integrity of electronic evidence have emerged as paramount concerns for the judicial system. At the heart of this transformation lies a technical safeguard known as the hash value, a cryptographic fingerprint that ensures digital evidence remains unaltered from the moment of collection to its presentation in court.

Hash values serve as digital fingerprints, providing a mathematical means to verify that electronic records have not been tampered with or manipulated. This technological tool has become indispensable in establishing the chain of custody for digital evidence, addressing the inherent vulnerabilities of electronic data to modification. The legal framework governing electronic evidence in India has evolved to recognize the critical role of hash values, though significant challenges remain in standardizing their application across jurisdictions. Understanding the technical foundation, legal requirements, and practical implications of hash values is essential for legal practitioners, law enforcement agencies, and forensic experts navigating the complexities of digital evidence.

Understanding Hash Values: The Digital Fingerprint

A hash value represents a fixed-length alphanumeric string generated through the application of a mathematical algorithm to a digital file. This process, known as hashing, transforms data of any size into a unique identifier that serves as the file’s digital fingerprint. The hash function operates on the principle that identical input data will invariably produce identical hash values, while even the slightest alteration to the original data results in a completely different hash output. This deterministic property makes hash values invaluable for verifying the authenticity and integrity of electronic records in legal proceedings.

The technical characteristics of hash functions are fundamental to their reliability as evidentiary tools. Hash algorithms are designed to be computationally infeasible to reverse, meaning that deriving the original data from its hash value is virtually impossible. Additionally, collision resistance ensures that two different files cannot produce the same hash value, providing a high degree of certainty that matching hash values indicate identical files. The Information Technology Act, 2000, recognizes hash functions as algorithmic processes that map sequences of bits into smaller sets known as hash results, emphasizing their computational infeasibility for reconstruction [1].

The most commonly employed hash algorithms in forensic investigations include MD5, SHA-1, and SHA-256. While MD5 and SHA-1 have been standard algorithms for years, contemporary forensic practice increasingly favors SHA-256 due to its enhanced security features and resistance to collision attacks. The Information Technology (Certifying Authorities) Rules, 2000, specifically recognizes MD5 and SHA-2 as accepted standard digital hash functions aligned with international standards [2]. The selection of appropriate hash algorithms has become a critical consideration in ensuring the admissibility and reliability of digital evidence in Indian courts.

Legal Framework Governing Hash Values in India

The legal recognition of hash values in India stems from multiple legislative instruments that collectively establish the framework for electronic evidence. The Information Technology Act, 2000, provides the foundational recognition of hash functions within the context of digital signatures and electronic authentication. Section 3(2) of the Act mandates that authentication of electronic records shall be effected through the use of asymmetric cryptosystems and hash functions, which transform the initial electronic record into another electronic record. The explanatory provisions define hash functions with technical precision, establishing their legal validity as authentication mechanisms.

The Bharatiya Sakshya Adhiniyam, 2023, which replaced the Indian Evidence Act of 1872, represents a significant advancement in codifying the requirements for electronic evidence admissibility. Section 63 of this Act delineates the conditions under which electronic records can be admitted as evidence in court proceedings. The provision mandates that electronic records must be accompanied by a certificate in the prescribed format, which includes explicit requirements for documenting hash values. The Schedule appended to Section 63(4) specifies that parties submitting electronic evidence must provide the hash value of the electronic record along with identification of the hash function employed, such as MD5, SHA-256, or SHA-512.

The certificate requirements under the Bharatiya Sakshya Adhiniyam comprise two distinct parts. Part A must be completed by the individual or entity generating the electronic evidence, providing firsthand information about the creation, storage, and preservation of the electronic record. This section establishes the initial chain of custody and documents the hash value calculated at the time of evidence collection. Part B requires certification from an expert, as defined under Section 39 of the Act, who possesses specialized knowledge in computer systems and electronic devices. This dual certification mechanism aims to ensure both the technical accuracy of hash value generation and the reliability of the underlying electronic record.

Judicial Pronouncements on Hash Values and Electronic Evidence

The Supreme Court of India has delivered several landmark judgments that have shaped the jurisprudence surrounding digital evidence and hash values. The case of Anvar P.V. v. P.K. Basheer (2014) stands as the watershed moment in Indian electronic evidence law [3]. In this case, the Supreme Court overruled its previous decision in State (NCT of Delhi) v. Navjot Sandhu and established that electronic records can only be admitted as secondary evidence when accompanied by a certificate complying with Section 65B of the Indian Evidence Act, 1872, the predecessor provision to Section 63 of the Bharatiya Sakshya Adhiniyam.

The three-judge bench in Anvar P.V. v. P.K. Basheer emphasized that electronic records are governed by special provisions that override general documentary evidence rules. The court held that the certificate requirement is not merely procedural but constitutes a substantive safeguard against the manipulation of electronic evidence. While the judgment does not explicitly mandate hash values, it establishes stringent technical requirements for proving electronic records, creating the legal foundation for hash verification as a reliable authentication method. The court recognized that electronic evidence, being more susceptible to tampering and alteration, requires special procedural safeguards to ensure its reliability.

The Delhi High Court’s decision in Jagdeo Singh v. State (2015) provides more direct recognition of hash values in forensic examination [4]. Although the case primarily addressed failures in complying with Section 65B certification requirements, the court acknowledged the importance of documenting hash values to ensure the originality of electronic evidence and prevent allegations of tampering. The judgment underscores that proper documentation of hash values forms an integral part of establishing the chain of custody for digital evidence, particularly when multiple copies or images of storage devices are created during investigation.

Hash Values in Digital Forensic Practice

The practical application of hash values in digital forensic investigations follows established protocols designed to maintain the integrity of evidence from seizure through analysis. When law enforcement officers or forensic examiners encounter digital devices during investigations, the first critical step involves creating forensic images or clones of storage media using write-blocking devices. Write blockers are hardware or software tools that prevent any modifications to the original data during the copying process, ensuring that the source device remains untampered. The Government e-Marketplace lists various forensic write-blocking devices from manufacturers such as CRU, Logicube, and Tableau, with prices ranging from approximately eighty-six thousand rupees to over six lakh rupees, reflecting the professional-grade nature of forensic equipment.

During the imaging process, forensic tools automatically calculate and record the hash value of both the original storage device and the created forensic image. This dual hashing serves multiple purposes within the investigative framework. First, it provides mathematical proof that the forensic image is an exact duplicate of the original device, ensuring that subsequent analysis operates on an authentic copy of the evidence. Second, it establishes a verifiable record that can be presented in court to demonstrate the integrity of the evidence collection process. The Digital Evidence Investigation Manual issued by the Central Board of Direct Taxes explicitly recognizes that accessing a system or hard disk without write-protection devices causes changes in the hash value, potentially rendering the evidence inadmissible [5].

The documentation requirements for hash values extend beyond mere calculation to include comprehensive record-keeping throughout the investigative process. Forensic examiners must prepare detailed reports documenting the hash values of original devices, forensic images, and any derivative copies created for analysis. These reports typically form annexures to investigation documents or assessment orders, establishing an unbroken chain of custody. In cases where imaging cannot be performed at the seizure site, the manual prescribes that two sets of images should be created in laboratory conditions in the presence of the accused or their representative, with a panchnama recording the hash value of each imaged device. This procedural safeguard addresses concerns about potential manipulation and ensures transparency in the forensic process.

International Perspectives and Comparative Analysis

The United States legal system has developed extensive jurisprudence regarding hash values and their role in electronic evidence authentication. Federal Rule of Evidence 901(b)(4) explicitly recognizes hash values as a method for establishing the authenticity of digital evidence through distinctive characteristics. The landmark case of United States v. Cartier (2008) provides significant precedent for the reliability of hash value matching [6]. In this case, the Eighth Circuit Court of Appeals addressed the use of hash values in identifying contraband files on peer-to-peer networks. The district court found that files with identical hash values have a 99.99 percent probability of being identical, establishing a high evidentiary threshold for hash value reliability.

The Cartier case also addressed the technical question of hash collisions, where two dissimilar files might theoretically produce the same hash value. Expert testimony established that while hash collisions are theoretically possible in laboratory settings, no two dissimilar files will naturally produce identical hash values using robust algorithms. This judicial recognition of hash value reliability has influenced American forensic practice, where hashing has become a standard procedure for authenticating electronic evidence, identifying duplicate files, and establishing chains of custody. The Federal Judicial Center’s guide for federal judges defines hash values as unique numerical identifiers with mathematical properties that make the probability of collision negligible.

European jurisdictions have similarly embraced hash values as essential tools in digital forensics. The case of Dramatico Entertainment Ltd. v. British Sky Broadcasting Ltd. in the United Kingdom examined the role of hash values in identifying infringing content on peer-to-peer networks. The court recognized hash values as reference codes comprising strings of letters and numbers that uniquely identify digital files, accepting their use in establishing the presence of specific content across multiple network locations. This international convergence in recognizing hash value reliability demonstrates the universal applicability of cryptographic principles in legal contexts, regardless of jurisdictional boundaries.

Challenges and Limitations in Indian Implementation

Despite the legal recognition of hash values in Indian legislation and jurisprudence, significant practical challenges impede their consistent application across the criminal justice system. A primary obstacle lies in the absence of standardized protocols for hash value generation and documentation. While the Bharatiya Sakshya Adhiniyam mandates the inclusion of hash values in certificates accompanying electronic evidence, the Act provides limited guidance on technical standards, algorithm selection, or verification procedures. This legislative gap results in inconsistent practices across different investigating agencies and forensic laboratories, potentially compromising the reliability of electronic evidence.

The definition and qualification of electronic experts under Indian law remains ambiguous, creating uncertainty about who possesses the requisite authority to certify hash values under Part B of the Section 63 certificate. Section 39 of the Bharatiya Sakshya Adhiniyam defines experts as persons specially skilled in foreign law, science, art, or any other field, but provides no specific criteria for determining expertise in digital forensics. Unlike jurisdictions such as the United States, which maintain professional certification programs for digital forensic examiners, India lacks a standardized framework for accrediting electronic evidence experts. This absence of clear qualification standards can lead to challenges regarding the credibility and weight of expert testimony on hash values.

The technical sophistication required to understand and evaluate hash values presents challenges for judicial officers, prosecutors, and defense counsel who may lack specialized training in digital forensics. Courts must assess the reliability of hash values, the appropriateness of algorithm selection, and the validity of forensic procedures without necessarily possessing the technical background to evaluate these factors independently. This knowledge gap can result in either excessive deference to technical testimony without adequate scrutiny or unwarranted skepticism toward scientifically sound evidence. Addressing this challenge requires ongoing judicial education programs focused on digital forensics and the scientific principles underlying hash functions.

Chain of Custody and Hash Value Documentation

The concept of chain of custody assumes heightened importance in the context of digital evidence, where the ease of duplication and modification necessitates rigorous documentation at every stage. Hash values serve as the mathematical backbone of chain of custody verification, providing objective proof that evidence remains unchanged from collection through courtroom presentation. The chain of custody documentation must include hash values calculated at the point of initial seizure, during the creation of forensic images, at the commencement of analysis, and at any subsequent stages where copies are generated or evidence is transferred between custodians.

The Digital Evidence Investigation Manual prescribes specific procedures for maintaining chain of custody through hash value documentation. When digital devices are seized at investigation sites, officers must immediately calculate and record hash values using forensic tools before any analysis occurs. This initial hash value establishes the baseline against which all subsequent copies and analyses are measured. If the investigation requires transporting storage devices to forensic laboratories, the panchnama prepared at the time of seizure must document the hash value to prevent later allegations of tampering during transport. The manual emphasizes that any access to digital storage without write-protection causes changes in hash values, potentially compromising evidence integrity.

In situations where multiple parties require access to digital evidence, such as when defense counsel seeks copies for independent examination, hash values ensure that all parties work with identical data sets. The prescribed procedure involves creating multiple forensic images in the presence of the accused or their representative, with each image verified to have identical hash values to the original device. This transparent process addresses due process concerns while maintaining evidence integrity. The assessee or accused may request copies of forensic images at their cost, with the accompanying documentation including hash values that can be independently verified to confirm the copies are authentic.

Technical Considerations in Hash Algorithm Selection

The choice of hash algorithm carries significant implications for the reliability and admissibility of electronic evidence. Cryptographic hash functions differ in their mathematical properties, computational requirements, and resistance to various attack vectors. MD5, developed in the early 1990s, produces 128-bit hash values and was once the standard for forensic applications. However, researchers have demonstrated successful collision attacks against MD5, meaning that it is possible to intentionally create two different files that produce identical MD5 hash values. This vulnerability has led to the deprecation of MD5 for security-critical applications, though it remains acceptable for basic file integrity verification in low-risk scenarios.

SHA-1, producing 160-bit hash values, represented an improvement over MD5 but has similarly been compromised by advances in computational power and cryptanalytic techniques. Researchers demonstrated practical collision attacks against SHA-1 in 2017, leading major technology companies and standards bodies to recommend discontinuing its use. The current industry standard, SHA-256, is part of the SHA-2 family of algorithms and produces 256-bit hash values. The significantly longer hash length and improved mathematical properties make SHA-256 highly resistant to collision attacks with current technology. The Information Technology (Certifying Authorities) Rules, 2000, recognizes SHA-2 as an accepted standard, aligning Indian practice with international norms.

Forensic practitioners must balance security considerations against compatibility requirements when selecting hash algorithms. Many legacy forensic tools and databases may only support MD5 or SHA-1, creating practical challenges in transitioning to newer algorithms. Best practice dictates calculating multiple hash values using different algorithms for critical evidence, providing redundancy and enhancing reliability. The Bharatiya Sakshya Adhiniyam certificate format accommodates multiple hash functions by providing checkboxes for MD5, SHA-256, and SHA-512, encouraging the use of multiple hashing methods. This approach mitigates the risk that vulnerability in a single algorithm could compromise evidence admissibility.

Future Directions and Recommendations

The effective implementation of hash value requirements in Indian digital evidence practice necessitates several systemic improvements. First, establishing comprehensive technical standards and standard operating procedures for hash value generation, documentation, and verification would create consistency across investigating agencies and forensic laboratories. These standards should specify approved hash algorithms, minimum documentation requirements, acceptable forensic tools, and quality assurance protocols. The Ministry of Home Affairs or the Ministry of Electronics and Information Technology could develop these standards in consultation with forensic science institutions, judicial training institutes, and international digital forensics organizations.

Second, developing a formal certification framework for digital forensic examiners would address the current ambiguity regarding expert qualifications under Section 39 of the Bharatiya Sakshya Adhiniyam. This framework should establish educational requirements, practical training standards, continuing education obligations, and ethical guidelines for practitioners. Certification programs could be administered through government forensic science institutions or professional bodies, with periodic recertification ensuring that examiners remain current with evolving technology. Clear certification standards would enhance the credibility of expert testimony and provide courts with objective criteria for evaluating witness qualifications.

Third, comprehensive training programs for judicial officers, prosecutors, and defense counsel would bridge the knowledge gap regarding digital forensics and hash values. Judicial training institutes should incorporate modules on electronic evidence, covering the scientific principles of hash functions, the technical aspects of digital forensic examination, and the legal standards for evaluating electronic evidence. These programs should include practical demonstrations of forensic tools and techniques, enabling legal professionals to better understand the capabilities and limitations of digital evidence. Investment in judicial education will enhance the quality of courtroom determinations regarding the admissibility and weight of electronic evidence.

Conclusion

Hash values have emerged as indispensable tools in the authentication and preservation of digital evidence within the Indian legal system. These cryptographic fingerprints provide objective, verifiable proof that electronic records remain unaltered from collection through courtroom presentation, addressing fundamental concerns about the integrity of digital evidence. The legal framework established by the Information Technology Act, 2000, and refined through the Bharatiya Sakshya Adhiniyam, 2023, recognizes hash values as essential components of electronic evidence certification. Landmark judicial pronouncements, particularly Anvar P.V. v. P.K. Basheer, have established stringent requirements for electronic evidence admissibility that implicitly rely on technical safeguards such as hash verification.

Despite this legal recognition, challenges remain in implementing hash value requirements consistently and effectively across India’s criminal justice system. The absence of standardized protocols, ambiguous expert qualification criteria, and limited technical understanding among legal professionals create obstacles to the reliable use of hash values in court proceedings. Addressing these challenges requires coordinated efforts to develop technical standards, establish certification frameworks for forensic examiners, and enhance judicial education regarding digital forensics. As digital evidence continues to proliferate in legal proceedings, the importance of hash values will only increase, making their proper implementation a matter of fundamental importance to the administration of justice.

The evolution of hash value jurisprudence in India reflects broader trends in the intersection of technology and law. As investigating agencies, forensic laboratories, and courts become more sophisticated in handling electronic evidence, hash values will transition from novel technical safeguards to routine evidentiary requirements. The success of this transition depends on maintaining rigorous standards for hash value generation and documentation while ensuring that legal professionals possess the knowledge necessary to evaluate digital evidence critically. By embracing hash values as foundational tools in digital forensics, the Indian legal system can ensure that electronic evidence meets the same standards of reliability and authenticity that have long governed traditional forms of proof.

References

[1] Government of India. (2000). The Information Technology Act, 2000. Section 3(2) – Authentication of electronic records. Available at: https://www.indiacode.nic.in/bitstream/123456789/13116/1/it_act_2000_updated.pdf 

[2] Ministry of Communications and Information Technology. (2000). The Information Technology (Certifying Authorities) Rules, 2000. Rule 6 – Hash functions. Available at: https://www.lawyersclubindia.com/articles/hash-value-authentication-and-admissibility-in-indian-perspective-6934.asp 

[3] Supreme Court of India. Anvar P.V. v. P.K. Basheer & Ors., (2014) 10 SCC 473. Available at: https://indiankanoon.org/doc/187283766/ 

[4] Delhi High Court. Jagdeo Singh @ Jagga and Others v. The State, 2015. Available at: https://lextechsuite.com/Jagdeo-Singh–Jagga-and-Others-Versus-The-State-2015-02-11 

[5] Central Board of Direct Taxes. Digital Evidence Investigation Manual. Government of India. Available at: https://corpotechlegal.com/admissibility-electronic-evidence-sec-63-bsa/ 

[6] United States Court of Appeals, Eighth Circuit. United States v. Cartier, 543 F.3d 442 (8th Cir. 2008). Available at: https://caselaw.findlaw.com/court/us-8th-circuit/1302840.html 

[7] Government of India. (2023). The Bharatiya Sakshya Adhiniyam, 2023. Section 63 – Special provisions as to evidence relating to electronic record. Available at: https://corpotechlegal.com/admissibility-electronic-evidence-sec-63-bsa/ 

[8] Centre for Internet and Society. (2014). “Anvar v. Basheer and the New (Old) Law of Electronic Evidence.” Available at: https://cis-india.org/internet-governance/blog/anvar-v-basheer-new-old-law-of-electronic-evidence 

[9] LiveLaw. (2024). “Does PV Anwar Judgment Mandating S.65B Evidence Act Certificate For Electronic Evidence Apply Retrospectively?” Available at: https://www.livelaw.in/top-stories/does-pv-anwar-judgment-mandating-s65b-evidence-act-certificate-for-electronic-evidence-apply-retrospectively-supreme-court-to-decide-266611 

The post IMPORTANCE OF HASH VALUE IN THE CONTEXT OF DIGITAL EVIDENCE COLLECTION appeared first on Bhatt & Joshi Associates.

Introduction

The digital revolution has fundamentally transformed the landscape of communication and evidence presentation in Indian courts. With technological advancement permeating every aspect of human interaction, the traditional modes of documentation and evidence collection have evolved significantly. WhatsApp, as one of the most prevalent messaging platforms globally, has emerged as a critical source of evidence in legal proceedings across India. The admissibility of electronic evidence, particularly WhatsApp messages as evidence presents unique challenges that require careful examination under the Indian Evidence Act, 1872 and subsequent amendments introduced by the Information Technology Act, 2000.

The intersection of technology and law necessitates a nuanced understanding of how electronic records, including WhatsApp messages, can be presented and accepted as valid evidence in Indian courts. This analysis examines the regulatory framework governing the admissibility of WhatsApp messages, the conditions precedent for their acceptance, and the judicial precedents that have shaped current practice.

The Legal Framework for Electronic Evidence

Statutory Foundation

The admissibility of electronic evidence in India is primarily governed by the Indian Evidence Act, 1872, as amended by the Information Technology Act, 2000. The Information Technology Act introduced crucial provisions that specifically address electronic records and their evidentiary value. Section 65A and Section 65B of the Indian Evidence Act constitute the cornerstone of electronic evidence law in India [1].

Section 65A provides that the contents of electronic records may be proved in accordance with the provisions of Section 65B [1]. This section establishes the procedural framework for introducing electronic evidence and mandates compliance with specific conditions outlined in Section 65B. The legislative intent behind these provisions was to create a structured approach to handling electronic evidence while ensuring its authenticity and reliability.

Defining Electronic Records

Under the Information Technology Act, 2000, Section 2(1)(t) defines an electronic record as “data, record or data generated, image or sound stored, received or sent in electronic form or microfilm or computer-generated microfiche” [2]. This definition encompasses WhatsApp messages, which are inherently electronic communications stored and transmitted through digital platforms.

WhatsApp messages fall squarely within this definition as they constitute data generated, stored, and transmitted in electronic form. The messages include text, images, audio recordings, and video files that are processed and stored on servers before being delivered to recipients. This classification is fundamental to understanding how WhatsApp communications are treated under Indian evidence law.

Section 65B: The Complete Code for Electronic Evidence

Technical Requirements

Section 65B(1) of the Indian Evidence Act creates a legal fiction by deeming electronic records to be documents, provided specific conditions are satisfied [3]. The provision states that “any information contained in an electronic record which is printed on a paper, stored, recorded or copied in optical or magnetic media produced by a computer shall be deemed to be also a document” if the conditions mentioned in the section are satisfied.

The conditions specified in Section 65B(2) include four fundamental requirements that must be met for electronic evidence to be admissible. First, the computer from which the information is obtained must have been regularly used for storing or processing information for activities regularly carried on by a person having lawful control over the computer’s use [3]. Second, the information must have been regularly fed into the computer during the ordinary course of such activities. Third, throughout the material period, the computer must have been operating properly, or any malfunction must not have affected the electronic record’s accuracy. Fourth, the information contained in the electronic record must reproduce or derive from information fed into the computer during ordinary activities.

The Certificate Requirement

Section 65B(4) introduces a mandatory certification requirement that has been the subject of extensive judicial interpretation [4]. The provision mandates that a certificate identifying the electronic record, describing how it was produced, providing particulars of the device involved, and confirming compliance with the conditions in Section 65B(2) must accompany the electronic evidence. This certificate must be signed by a person occupying a responsible official position in relation to the operation of the relevant device or management of relevant activities.

The certificate requirement serves as a safeguard against tampering and ensures the authenticity of electronic evidence. Given the susceptibility of digital data to manipulation, this procedural protection is essential for maintaining the integrity of the judicial process.

Landmark Judicial Precedents

State (NCT of Delhi) v. Navjot Sandhu (2005)

The Supreme Court’s decision in State (NCT of Delhi) v. Navjot Sandhu marked an early attempt to address electronic evidence admissibility [5]. The case involved call detail records and other electronic evidence related to the Parliament attack case. Initially, the Court held that electronic records could be admitted as secondary evidence under Sections 63 and 65 of the Evidence Act, even without strict compliance with Section 65B requirements.

The Court observed that printouts of electronic records taken through mechanical processes and certified by responsible officials could be admitted as evidence. This decision created a more lenient approach to electronic evidence, suggesting that the general provisions of the Evidence Act could supplement the specific requirements of Section 65B. However, this interpretation was later overruled as it undermined the legislative intent behind the specialized provisions for electronic evidence.

Anvar P.V. v. P.K. Basheer (2014)

The Supreme Court’s judgment in Anvar P.V. v. P.K. Basheer represents a watershed moment in electronic evidence law [6]. This three-judge bench decision fundamentally altered the landscape of electronic evidence admissibility by establishing that Sections 65A and 65B constitute a complete code for electronic evidence, overriding general provisions of the Evidence Act.

The Court applied the principle of “generalia specialibus non derogant,” meaning that special law prevails over general law [6]. Consequently, the Court held that Sections 63 and 65 have no application to secondary evidence by way of electronic records, which are wholly governed by Sections 65A and 65B. The decision emphasized that electronic records by way of secondary evidence cannot be admitted unless the requirements under Section 65B are satisfied, including the mandatory certificate under Section 65B(4).

In this case, the appellant failed to produce the required certificates for CDs containing election campaign materials, rendering them inadmissible. The Court’s reasoning centered on the susceptibility of electronic evidence to tampering and the need for strict procedural safeguards to ensure authenticity. This decision effectively overruled the more permissive approach taken in Navjot Sandhu and established a stringent standard for electronic evidence admissibility.

Arjun Panditrao Khotkar v. Kailash Kushanrao Gorantyal (2020)

The Supreme Court’s decision in Arjun Panditrao Khotkar v. Kailash Kushanrao Gorantyal resolved conflicting interpretations regarding the certificate requirement under Section 65B(4) [7]. This three-judge bench reaffirmed the mandatory nature of the certification requirement established in Anvar P.V. v. P.K. Basheer and clarified several important aspects of electronic evidence law.

The Court emphasized that the certificate under Section 65B(4) is a condition precedent to the admissibility of electronic records as secondary evidence [7]. However, the decision also clarified that no certificate is required when the original electronic document itself is produced. This can occur when the owner of a device containing the original information appears in the witness box and establishes ownership and operation of the device.

The judgment addressed practical challenges in obtaining certificates by allowing parties to apply to the court for production of certificates by concerned persons or authorities when such certificates cannot be obtained directly. This provision acknowledges the practical difficulties faced by litigants while maintaining the integrity of the certification requirement.

WhatsApp Messages: Specific Considerations

Classification as Electronic Evidence

WhatsApp messages are unequivocally classified as electronic evidence under Indian law. These communications are generated, stored, transmitted, and received through electronic means, placing them squarely within the ambit of Sections 65A and 65B of the Indian Evidence Act. The messages exist as data on servers and user devices, making them electronic records as defined under the Information Technology Act, 2000.

The electronic nature of WhatsApp messages raises important questions about their admissibility, particularly regarding the distinction between primary and secondary evidence. When WhatsApp messages are produced directly from the original device where they were first stored, they may constitute primary evidence. However, when presented as printouts or copies, they typically represent secondary evidence requiring compliance with Section 65B certification requirements.

Conditions for Admissibility

For WhatsApp messages to be admissible as evidence in Indian courts, several conditions must be satisfied. The fundamental requirement is that the messages must meet the technical conditions specified in Section 65B(2) of the Indian Evidence Act. These conditions ensure that the electronic system producing the evidence was functioning properly and that the information was recorded in the ordinary course of activities.

Specifically, the WhatsApp servers and user devices must have been operating properly during the relevant period [8]. The messages must have been transmitted and received through normal platform operations, and the integrity of the transmission process must be established. Additionally, the party seeking to introduce WhatsApp messages as evidence must demonstrate that the messages were received by the intended recipient, typically evidenced by delivery and read receipts within the application.

The authenticity requirements for WhatsApp messages include establishing the sender’s identity and confirming that the messages were sent with the requisite intent. Courts have recognized that blue tick marks indicating message delivery and reading can serve as evidence of successful transmission and receipt [9]. However, this evidence alone is insufficient without proper certification under Section 65B(4).

Practical Challenges in Certification

The certification requirement for WhatsApp messages presents unique practical challenges. WhatsApp operates through Meta Platforms, Inc. (formerly Facebook Inc.), an international corporation with complex server infrastructures spanning multiple jurisdictions. Obtaining certificates from such entities for individual users or even for law enforcement agencies can be extremely difficult or practically impossible.

The Supreme Court in Arjun Panditrao Khotkar acknowledged these challenges and suggested that parties could apply to courts for assistance in obtaining necessary certificates [7]. This mechanism provides a practical solution while maintaining the integrity of the certification requirement. Courts may direct service providers or relevant authorities to produce certificates when parties demonstrate genuine inability to obtain them through direct approaches.

Primary vs. Secondary Evidence Distinction

The distinction between primary and secondary evidence becomes crucial in the context of WhatsApp messages. When WhatsApp messages are displayed directly on the original device where they were first received or sent, they may constitute primary evidence under Section 62 of the Indian Evidence Act. In such cases, the strict certification requirements of Section 65B(4) may not apply, as established in Arjun Panditrao Khotkar [7].

However, when WhatsApp messages are presented as screenshots, printouts, or copies stored on different devices, they constitute secondary evidence requiring full compliance with Section 65B provisions. This distinction has practical implications for evidence presentation strategies and the burden of proof in legal proceedings.

Regulatory Compliance and Authentication

Chain of Custody Requirements

The admissibility of WhatsApp messages requires establishing a clear chain of custody to prevent tampering and ensure authenticity. This involves documenting how the messages were accessed, extracted, preserved, and presented to the court. Law enforcement agencies and forensic experts must follow established protocols for digital evidence collection and preservation.

The Supreme Court in Arjun Panditrao Khotkar emphasized the need for appropriate rules regarding retention of data, segregation, chain of custody procedures, and record maintenance for electronic evidence [7]. These requirements extend to WhatsApp messages, necessitating careful documentation of evidence handling procedures from initial discovery through court presentation.

Forensic Examination Standards

WhatsApp messages often require forensic examination to establish their authenticity and integrity. Forensic experts may need to analyze metadata, examine device logs, and verify transmission records to confirm that messages have not been altered or fabricated. The examination must comply with recognized forensic standards and methodologies to ensure reliability.

Section 45A of the Indian Evidence Act provides for the admissibility of expert opinions regarding electronic evidence [10]. Forensic experts can testify about the authenticity, integrity, and reliability of WhatsApp messages based on technical analysis. However, such expert testimony cannot substitute for the mandatory certification requirements under Section 65B(4).

Contemporary Challenges and Future Considerations

Encryption and Privacy Concerns

WhatsApp employs end-to-end encryption, which presents unique challenges for evidence collection and authentication. While encryption protects user privacy, it can complicate law enforcement investigations and evidence production. The encrypted nature of WhatsApp communications means that service providers cannot access message content, potentially limiting their ability to provide comprehensive certificates under Section 65B(4).

The balance between privacy rights and evidence collection requirements continues to evolve through judicial interpretation and legislative development. Courts must navigate the tension between protecting individual privacy and ensuring effective law enforcement and judicial proceedings.

Cross-Border Jurisdiction Issues

WhatsApp’s international infrastructure creates jurisdictional complexities for evidence collection and certification. Indian courts may face challenges in compelling foreign corporations to provide certificates or testimony regarding their systems and operations. These challenges require international cooperation and may necessitate diplomatic or treaty-based solutions.

The extraterritorial application of Indian evidence law to international service providers remains an evolving area requiring careful consideration of sovereignty, comity, and practical enforcement mechanisms.

Best Practices for Legal Practitioners

Evidence Collection Strategies

Legal practitioners handling cases involving WhatsApp messages must develop systematic approaches to evidence collection and preservation. This includes immediate preservation of devices, proper documentation of evidence handling, and early engagement with forensic experts when necessary. Practitioners should also consider the distinction between primary and secondary evidence when developing presentation strategies.

The timing of evidence collection is critical, as WhatsApp messages may be deleted or devices may be damaged or replaced. Practitioners should advise clients to preserve relevant communications and avoid any actions that might compromise evidence integrity.

Compliance with Certification Requirements

Given the mandatory nature of certification requirements established in Anvar P.V. v. P.K. Basheer and reaffirmed in Arjun Panditrao Khotkar, practitioners must ensure full compliance with Section 65B(4) when presenting WhatsApp messages as secondary evidence [6][7]. This may require engaging with service providers, seeking court assistance for certificate production, or considering alternative evidence presentation strategies.

Practitioners should also maintain detailed records of attempts to obtain certificates and any obstacles encountered, as courts may consider these factors when evaluating compliance efforts and determining admissibility.

Conclusion

The admissibility of WhatsApp messages in Indian courts represents a complex intersection of technology and law requiring careful navigation of statutory requirements and judicial precedents. The current legal framework, established through the Indian Evidence Act, 1872 as amended by the Information Technology Act, 2000, provides a structured approach to electronic evidence while ensuring necessary safeguards against tampering and manipulation.

The Supreme Court’s decisions in Anvar P.V. v. P.K. Basheer and Arjun Panditrao Khotkar have established clear precedents regarding the mandatory nature of certification requirements for electronic evidence while acknowledging practical challenges in implementation. These decisions reflect the judiciary’s commitment to maintaining evidence integrity while adapting to technological advancement.

As digital communication continues to evolve and expand, the legal framework governing electronic evidence must also adapt to address emerging challenges while maintaining fundamental principles of authenticity, reliability, and due process. The admissibility of WhatsApp messages in Indian courts will continue to develop through judicial interpretation and potential legislative refinement, requiring ongoing attention from legal practitioners, courts, and policymakers.

The current state of law provides a workable framework for handling WhatsApp messages as evidence, but practical implementation requires careful attention to certification requirements, evidence preservation protocols, and evolving technological capabilities. Legal practitioners must remain informed about developments in this area and adapt their practices to ensure effective representation while maintaining compliance with applicable legal standards.

References

[1] Indian Evidence Act, 1872, Sections 65A and 65B. Available at: https://www.indiacode.nic.in/bitstream/123456789/15351/1/iea_1872.pdf 

[2] Information Technology Act, 2000, Section 2(1)(t). Available at: https://www.indiacode.nic.in/bitstream/123456789/13116/1/it_act_2000_updated.pdf 

[3] Section 65B, Indian Evidence Act, 1872. Available at: https://indiankanoon.org/doc/35556724/ 

[4] Arjun Panditrao Khotkar v. Kailash Kushanrao Gorantyal, Civil Appeal Nos. 20825-20826 of 2017, Supreme Court of India (2020). Available at: https://indiankanoon.org/doc/172105947/ 

[5] State (NCT of Delhi) v. Navjot Sandhu, (2005) 11 SCC 600, Supreme Court of India. Available at: https://indiankanoon.org/doc/1142973/ 

[6] Anvar P.V. v. P.K. Basheer, (2014) 10 SCC 473, Supreme Court of India. Available at: https://indiankanoon.org/doc/187283766/ 

[7] Arjun Panditrao Khotkar v. Kailash Kushanrao Gorantyal, (2020) 5 SCC 263, Supreme Court of India. Available at: https://lawbhoomi.com/arjun-panditrao-khotkar-v-kailash-kushanrao-gorantyal/ 

[8] Shamsudin Bin Mohd. Yosuf v. Suhaila Binti Sulaiman, High Court case (Malaysia), cited in Indian jurisprudence on WhatsApp admissibility.

[9] SBI Cards and Payment Services Pvt. Ltd. v. Rohit Jadhav, Indian court decision recognizing blue tick evidence.

[10] Indian Evidence Act, 1872, Section 45A – Opinion of Examiner of Electronic Evidence. Available at: https://indiankanoon.org/doc/1870995/ 

[11] Supreme Court on Electronic Evidence under Section 65B, Corporate Law Analysis. Available at: https://corporate.cyrilamarchandblogs.com/2020/07/section-65b-of-the-indian-evidence-act-1872-requirements-for-admissibility-of-electronic-evidence-revisited-by-the-supreme-court/ 

[12] Electronic Evidence under Indian Evidence Act Analysis. Available at: https://www.latestlaws.com/articles/electronic-evidence-under-indian-evidence-act-1872-by-roopali-lamba 

Links Download Full Booklet

• https://bhattandjoshiassociates.s3.ap-south-1.amazonaws.com/judgements/iea_1872.pdf
• https://bhattandjoshiassociates.s3.ap-south-1.amazonaws.com/judgements/it_act_2000_updated (1).pdf
• https://bhattandjoshiassociates.s3.ap-south-1.amazonaws.com/judgements/Arjun_Panditrao_Khotkar_vs_Kailash_Kushanrao_Gorantyal_on_14_July_2020.PDF
• https://bhattandjoshiassociates.s3.ap-south-1.amazonaws.com/judgements/Anvar_P_V_vs_P_K_Basheer_Ors_on_18_September_2014.PDF
• https://bhattandjoshiassociates.s3.ap-south-1.amazonaws.com/judgements/Sbi_Cards_And_Payments_Services_Pvt_Ltd_vs_Rohidas_Jadhav_on_17_January_2019.PDF

Written and Authorized by Prapti Bhatt

The post WhatsApp Messages as Evidence in Indian Courts: A Legal Analysis of Admissibility under the Indian Evidence Act, 1872 appeared first on Bhatt & Joshi Associates.