Trust in digital records: An increasingly cloudy legal area

Abstract Trust has been defined in many ways, but at its core it involves acting without the knowledge needed to act. Trust in records depends on four types of knowledge about the creator or custodian of the records: reputation, past performance, competence, and the assurance of confidence in future performance. For over half a century society has been developing and adopting new computer technologies for business and communications in both the public and private realm. Frameworks for establishing trust have developed as technology has progressed. Today, individuals and organizations are increasingly saving and accessing records in cloud computing infrastructures, where we cannot assess our trust in records solely on the four types of knowledge used in the past. Drawing on research conducted at the University of British Columbia into the nature of digital records and their trustworthiness, this article presents the conceptual archival and digital forensic frameworks of trust in records and data, and explores the common law legal framework within which questions of trust in documentary evidence are being tested. Issues and challenges specific to cloud computing are introduced.

[1]  P. Sztompka Trust: A Sociological Theory , 2000 .

[2]  S. Bok,et al.  Lying: Moral Choice in Public and Private Life , 1979 .

[3]  L. Duranti From Digital Diplomatics to Digital Records Forensics , 2010 .

[4]  L. Duranti,et al.  Educating for trust , 2011 .

[5]  Brian D. Carrier,et al.  Open Source Digital Forensics Tools The Legal Argument 1 , 2003 .

[6]  Rudolph J. Peritz Computer Data and Reliability: A Call for Authentication of Business Records Under the Federal Rules of Evidence, 7 Computer L.J. 23 (1986) , 1986 .

[7]  Brian D. Carrier Defining Digital Forensic Examination and Analysis Tool Using Abstraction Layers , 2003, Int. J. Digit. EVid..

[8]  Barbara Endicott-Popovsky,et al.  Digital Records Forensics: A New Science and Academic Program for Forensic Readiness , 2010, J. Digit. Forensics Secur. Law.

[9]  Kenneth Thibodeau,et al.  The Concept of Record in Interactive, Experiential and Dynamic Environments: the View of InterPARES* , 2005 .

[10]  Timothy Grance,et al.  Guidelines on Security and Privacy in Public Cloud Computing | NIST , 2012 .

[11]  Erin Kenneally Gatekeeping Out of the Box: Open Source Software as a Mechanism to Assess Reliability for Digital Evidence , 2001 .

[12]  Sherry L. Xie Building Foundations for Digital Records Forensics: A Comparative Study of the Concept of Reproduction in Digital Records Management and Digital Forensics , 2011 .

[13]  Richard Boddington,et al.  Solid State Drives: The Beginning of the End for Current Practice in Digital Forensic Recovery? , 2010 .

[14]  Sarah Mocas,et al.  Building theoretical underpinnings for digital forensics research , 2004, Digit. Investig..

[15]  Heather MacNeil Providing Grounds for Trust: Developing Conceptual Requirements for the Long-Term Preservation of Authentic Electronic Records , 2000 .

[16]  George L. Paul Foundations of Digital Evidence , 2008 .

[17]  Eric Van Buskirk,et al.  Digital Evidence: Challenging the Presumption of Reliability , 2006, J. Digit. Forensic Pract..

[18]  David W. J. Stringer-Calvert,et al.  Digital Evidence , 2002, Commun. ACM.