R v Whiteley

Last updated
R v Whiteley
Royal Coat of Arms of the United Kingdom (St Edward's Crown).svg
Court Court of Appeal
Decided4 February 1991
Citation(1991) 93 Cr App R 25, (1991) 155 JP 917, [1992] ECC 485, [1993] FSR 168, [1991] Crim LR 436, (1991) 155 JPN 378, (1991) 135 SJ 249
Court membership
Judges sitting Lord Chief Justice Lord Lane, Mr Justice Owen, Mr Justice Pill
Keywords
criminal damage, cybercrime

R v Whiteley (1991) 93 Cr App R 25 was an important case in the criminal law of England & Wales in relation to criminal damage. It established that for the purposes of the Criminal Damage Act 1971, [1] the property in question must be tangible but the damage done may be intangible. [2] The case related to hacking and tampering with information on a computer. By the time the appeal was heard, section 3(6) of the Computer Misuse Act 1990 [3] added into law that modifying the contents of a computer was not to be regarded as damage to the computer or computer storage medium, unless the effects impaired the storage medium's physical condition. This did not affect the appeal as the offence had taken place before the Act went into effect.

Contents

Facts

Nicholas Alan Whiteley hacked the Joint Academy Network (JANET) system and altered information stored on discs causing computers to fail. There was no physical damage to the computers or the discs. He was acquitted on charges relating to damage of the computers themselves. However, in relation to the discs, he was convicted on four counts of damaging property, on the basis that he had altered the magnetic particles of the disc and that the particles and the data they stored were one entity capable of being damaged.

He appealed on the basis that the disc itself and the intangible data stored on it were distinguishable, and the latter could not be damaged.

Judgment

The judges considered the appellant's argument to be fallacious. They summarised it as essentially saying that because the magnetic particles were imperceptible to unaided human senses, the appellants interference could only be to intangible information. They rejected this argument, finding that the magnetic particles were a part of the disc, and by interfering with the magnetic particles the appellant had impaired the value and usefulness of the discs. The fact that the alteration could only be perceived by operating the computer did not make the damage any less real. [4]

The judgment made particular reference to the cases of Cox v Riley [5] and Morphitis v Salmon [6] among others. The former was a case in which a computerised machine was rendered inoperable when a disgruntled employee erased the programme necessary for it to function. The latter was a case in which a barrier had been dismantled, that found that the meaning of damage in the relevant Act had a wide meaning that went beyond physical harm. They summarised the authorities thus:

Any alteration to the physical nature of the property concerned may amount to damage within the meaning of the section. Whether it does so or not will depend upon the effect that the alteration has had upon the legitimate operator (who for convenience may be referred to as the owner). If the hacker's actions do not go beyond, for example, mere tinkering with an otherwise “empty” disc, no damage would be established. Where, on the other hand, the interference with the disc amounts to an impairment of the value or usefulness of the disc to the owner, then the necessary damage is established.

Significance

The judgment is of limited significance due to the acts in question now being under statutes written specifically to address cybercrime. It is still noteworthy that criminal damage need not be tangible, and this aspect of the judgment remains good law. The case was mentioned in Attorney General's Reference(No. 1 of 2022), [7] well after modern cybercrime laws were established, illustrating that the case is still relevant to criminal damage despite its connection to cybercrime.

Related Research Articles

Bodily harm is a legal term of art used in the definition of both statutory and common law offences in Australia, Canada, England and Wales and other common law jurisdictions. It is a synonym for injury or bodily injury and similar expressions, though it may be used with a precise and limited meaning in any given jurisdiction. The expression grievous bodily harm first appeared in a statute in Lord Ellenborough's Act (1803).

<span class="mw-page-title-main">Computer Fraud and Abuse Act</span> 1986 United States cybersecurity law

The Computer Fraud and Abuse Act of 1986 (CFAA) is a United States cybersecurity bill that was enacted in 1986 as an amendment to existing computer fraud law, which had been included in the Comprehensive Crime Control Act of 1984. Prior to computer-specific criminal laws, computer crimes were prosecuted as mail and wire fraud, but the applying law was often insufficient.

<span class="mw-page-title-main">Cybercrime</span> Type of crime based in computer networks

Cybercrime encompasses a wide range of criminal activities that are carried out using digital devices and/or networks. These crimes involve the use of technology to commit fraud, identity theft, data breaches, computer viruses, scams, and expanded upon in other malicious acts. Cybercriminals exploit vulnerabilities in computer systems and networks to gain unauthorized access, steal sensitive information, disrupt services, and cause financial or reputational harm to individuals, organizations, and governments.

Trespass to chattels is a tort whereby the infringing party has intentionally interfered with another person's lawful possession of a chattel. The interference can be any physical contact with the chattel in a quantifiable way, or any dispossession of the chattel. As opposed to the greater wrong of conversion, trespass to chattels is argued to be actionable per se.

Assault occasioning grievous bodily harm is a term used in English criminal law to describe the severest forms of battery. It refers to two offences that are created by sections 18 and 20 of the Offences against the Person Act 1861. The distinction between these two sections is the requirement of specific intent for section 18; the offence under section 18 is variously referred to as "wounding with intent" or "causing grievous bodily harm with intent", whereas the offence under section 20 is variously referred to as "unlawful wounding", "malicious wounding" or "inflicting grievous bodily harm".

In English criminal law, public nuisance is a act, condition or thing that is illegal because it interferes with the rights of the general public.

<span class="mw-page-title-main">Computer Misuse Act 1990</span> United Kingdom legislation

The Computer Misuse Act 1990 is an act of the Parliament of the United Kingdom, introduced partly in response to the decision in R v Gold & Schifreen (1988) 1 AC 1063. Critics of the bill complained that it was introduced hastily, was poorly thought out, and that intention was often difficult to prove, with the bill inadequately differentiating "joyriding" hackers like Gold and Schifreen from serious computer criminals. The Act has nonetheless become a model from which several other countries, including Canada and the Republic of Ireland, have drawn inspiration when subsequently drafting their own information security laws, as it is seen "as a robust and flexible piece of legislation in terms of dealing with cybercrime". Several amendments have been passed to keep the Act up to date.

Robert Jonathan Schifreen is a former UK-based computer hacker and magazine editor, and the founder of IT security awareness training programme SecuritySmart.co.uk. He was the first person charged with illegally accessing a computer system, but was acquitted because there was no such specific criminal offence at the time. Later in life he became a computer security consultant, speaking at many conferences on information security and training banks, large companies and universities in the UK on IT security. In 2014 he began developing the software on which SecuritySmart runs from scratch which reached completion and product launch in June 2016.

Assault occasioning actual bodily harm is a statutory offence of aggravated assault in England and Wales, Northern Ireland, the Australian Capital Territory, New South Wales, Hong Kong and the Solomon Islands. It has been abolished in the Republic of Ireland and in South Australia, but replaced with a similar offence.

<i>R v Brown</i> UK House of Lords case

R v Brown[1993] UKHL 19, [1994] 1 AC 212 is a House of Lords judgment which re-affirmed the conviction of five men for their involvement in consensual unusually severe sadomasochistic sexual acts over a 10-year period. They were convicted of a count of unlawful and malicious wounding and a count of assault occasioning actual bodily harm. The key issue facing the Court was whether consent was a valid defence to assault in these circumstances, to which the Court answered in the negative. The acts involved included the nailing of a part of the body to a board, but not so as to necessitate, strictly, medical treatment.

Duress in English law is a complete common law defence, operating in favour of those who commit crimes because they are forced or compelled to do so by the circumstances, or the threats of another. The doctrine arises not only in criminal law but also in civil law, where it is relevant to contract law and trusts law.

In English law, diminished responsibility is one of the partial defenses that reduce the offense from murder to manslaughter if successful. This allows the judge sentencing discretion, e.g. to impose a hospital order under section 37 of the Mental Health Act 1983 to ensure treatment rather than punishment in appropriate cases. Thus, when the actus reus of death is accompanied by an objective or constructive version of mens rea, the subjective evidence that the defendant did intend to kill or cause grievous bodily harm because of a mental incapacity will partially excuse his conduct. Under s.2(2) of the Homicide Act 1957 the burden of proof is on the defendant to the balance of probabilities. The M'Naghten Rules lack a volitional limb of "irresistible impulse"; diminished responsibility is the volitional mental condition defense in English criminal law.

In the English law of homicide, manslaughter is a less serious offence than murder, the differential being between levels of fault based on the mens rea or by reason of a partial defence. In England and Wales, a common practice is to prefer a charge of murder, with the judge or defence able to introduce manslaughter as an option. The jury then decides whether the defendant is guilty or not guilty of either murder or manslaughter. On conviction for manslaughter, sentencing is at the judge's discretion, whereas a sentence of life imprisonment is mandatory on conviction for murder. Manslaughter may be either voluntary or involuntary, depending on whether the accused has the required mens rea for murder.

R v Hinks [2000] UKHL 53 is an English case heard by the House of Lords on appeal from the Court of Appeal of England and Wales. The case concerned the interpretation of the word "appropriates" in the Theft Act 1968. The relevant statute is as follows:

<span class="mw-page-title-main">Criminal damage in English law</span> United Kingdom legislation

Criminal damage in English law was originally a common law offence. The offence was largely concerned with the protection of dwellings and the food supply, and few sanctions were imposed for damaging personal property. Liability was originally restricted to the payment of damages by way of compensation.

State vs Ari David Levie was a decision of the Hennepin County District Court, File No. K2-03-106, considered and decided by Randall, Presiding Judge.

R v. Fellows; R v. Arnold [1997] 1 Cr App R 244; [1997] 2 All E.R. 548, is a prominent English case on the statutory interpretation of section 1 of the Protection of Children Act 1978, and the Obscene Publications Act 1959, the definitions have since been amended by the Criminal Justice and Public Order Act 1994. The Court of Appeal held that data on a computer that represents the original photograph is a copy of a photograph under the 1978 Act, therefore, downloading an indecent photograph from the internet constitutes making a copy or reproduction of an indecent photograph.

DPP v Lennon is the first reported criminal case in the U.K. concerning so-called "denial of service" (DoS) attacks. The appeal court found that DoS attacks constituted an offence of unauthorised modification under s. 3 of the Computer Misuse Act 1990 (CMA) and thus clarified the law regarding DoS.

<i>International Airport Centers, L.L.C. v. Citrin</i>

In International Airport Centers, L.L.C. v. Citrin, the Seventh Circuit Court of Appeals evaluated the dismissal of the plaintiffs' lawsuit for failure to state a claim based upon the interpretation of the word "transmission" in the Computer Fraud and Abuse Act, 18 U.S.C. § 1030. Jacob Citrin had been employed by IAC, who had lent him a laptop for use while under their employment. Upon leaving IAC, he deleted the data on the laptop before returning it to IAC. The Court of Appeals decided to reverse the decision and reinstated IAC's lawsuit.

References

  1. "Criminal Damage Act 1971 s1". legislation.gov.uk. Retrieved 28 May 2024.
  2. R v Whiteley (1991) 93 Cr App R 25
  3. "Computer Misuse Act 1990 s3". legislation.gov.uk. Retrieved 28 May 2024.
  4. David Ormerod; David Perry, eds. (2023). Blackstone’s Criminal Practice 2024 (34 ed.). Oxford University Press. B8.6. ISBN   9780198892489.
  5. Cox v Riley (1986) 83 Cr App R 54
  6. Morphitis v Salmon (1989) 154 JP 365
  7. "Attorney General's Reference (No. 1 of 2022) [2022] EWCA Crim 1259". bailii.org. Retrieved 28 May 2024.
This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.