Plea of Alibi in Cybercrime: The Growing Importance of Digital Evidence in India
By Advocate Avichal Pandey, Allahabad High Court
In criminal jurisprudence, the “plea of Alibi” has always been a significant defence available to an accused person. Traditionally, an accused could avoid criminal liability by proving that he or she was physically present somewhere else when the offence was committed. However, in the modern digital era, cybercrime has transformed the concept of alibi from mere physical absence to “Digital Absence.”
With cyber offences increasing rapidly in India, courts and investigating agencies are now confronted with a new challenge determining who actually used a device, network, or online identity at the time of the alleged offence.
Meaning of Plea of Alibi
The term “Alibi” is derived from Latin, meaning “elsewhere.” Under Indian law, the plea of alibi is recognized through Section 11 of the Indian Evidence Act, 1872, which provides that facts inconsistent with the facts in issue become relevant.
The classic illustration under Section 11 states that if a crime occurred in one city, evidence showing that the accused was in another city at the relevant time becomes relevant evidence.
Traditionally, the plea of alibi relied upon:-
●CCTV footage
●Witness testimony
●Travel records
●Hotel entries
●Attendance registers
●Mobile location records
However, cybercrime investigations require a much deeper technological examination.
Alibi in Cybercrime Cases
In cyber offences such as:-
●Online fraud
●Phishing scams
●Hacking
●Identity theft
●Cyber stalking
●Cryptocurrency fraud
●Data theft
●Social media offences
the actual offender may operate remotely from any location in the world. Therefore, mere physical absence from the crime scene is no longer sufficient.
The real question becomes:
"Who was operating the device, internet connection, or digital account at the relevant time?"
This has given rise to the concept of a “Digital Alibi.”
What is a Digital Alibi?
A digital alibi refers to electronic or forensic evidence proving that the accused either:-
1. Did not use the concerned device or network, or
2. Could not have committed the cyber offence due to technological impossibility.
Unlike traditional alibi, digital alibi focuses on:-
●IP address analysis
●Device authentication
●Login records
●Metadata examination
●Server logs
●Browser history
●VPN usage
●Biometric authentication
●Multi-device access patterns
In cybercrime prosecutions, digital footprints often become more important than physical presence.
Key Evidentiary Challenges in Cybercrime Alibi
1. IP Address Manipulation
Cybercriminals frequently use:-
●VPN services
●Proxy servers
●TOR networks
●Spoofed IP addresses
to conceal their identity and location. Therefore, the IP address alone may not conclusively establish guilt.
2. Device Hijacking and Botnets
A computer or mobile device may be remotely controlled through malware or botnet attacks. In such situations, an accused may argue that his system was compromised and used without authorization.
This defence requires detailed forensic examination of the device.
3. Session Theft and Credential Misuse
Cyber offences are often committed through stolen passwords, hacked email accounts, or cloned devices. Merely proving ownership of a device or account may not prove actual operation by the accused.
4. Impossible Concurrency
Digital records sometimes reveal simultaneous logins from geographically impossible locations. Such evidence may support the defence of alibi.
For example:-
●One login from India
●Another login from Europe within minutes
This may indicate credential compromise or account hacking.
Importance of Electronic Evidence
Electronic evidence plays a central role in cybercrime litigation. Indian courts increasingly rely upon:-
●Server logs
●Email headers
●CCTV recordings
●Metadata
●Digital timestamps
●Cloud records
●Internet service provider records
●for determining criminal liability.
Under Sections 65A and 65B of the Indian Evidence Act, electronic records are admissible subject to statutory conditions and certification requirements.
Therefore, proper preservation and authentication of electronic evidence becomes extremely important in establishing or disproving a plea of alibi.
Burden of Proof
The prosecution must first establish the involvement of the accused in the alleged offence. Once sufficient evidence is produced, the burden shifts upon the accused to prove the plea of alibi with cogent and convincing evidence.
Courts have repeatedly held that alibi must be proved with certainty so as to exclude the possibility of the accused being involved in the offence.
In cybercrime matters, this burden may be discharged through:-
●Digital forensic reports
●Device seizure analysis
●Login activity reports
●Expert testimony
●ISP records
●Authentication logs
Emerging Judicial Challenges
Indian courts are now facing complex questions such as:-
"Can a person be held liable merely because a cyber offence originated from his IP address?"
●What if the Wi-Fi network was unsecured?
●Can malware attacks create false implication?
●How should courts treat AI-generated activity or automated scripts?
●Can digital evidence be manipulated?
These issues make cybercrime litigation highly technical and evidence-driven.
Conclusion
The plea of alibi in cybercrime cases has evolved far beyond proving physical absence. In today’s interconnected world, digital presence often matters more than physical location.
Cybercrime investigations demand sophisticated forensic analysis, technological expertise, and careful judicial scrutiny. Courts must balance technological realities with constitutional safeguards to ensure that innocent individuals are not falsely implicated merely because a device or network was linked to an offence.
As India moves toward an increasingly digital justice system, robust handling of electronic evidence and scientific investigation will become the backbone of fair cybercrime adjudication.
By Avichal Pandey,Advocate, Allahabad High Court
Post a Comment