As a follow-up to a similar article posted on Clearstatic, I found this article[PDF] written anonymously which outlines a scenario that calls into question any evidence obtained by the RIAA.
The theory is there is an implicit trust between users of a P2P network to insure data integrity between users. However “trusting the integrity of this data would be a mistake. Implementation flaws in P2P applications allow an attacker to falsify a range of “evidence” regardless of the network topology, including creating questionable data and making it appear to originate from another P2P user, thereby turning them into an apparent offender.
Furthermore, an attacker can trick an innocent P2P user into downloading a contraband file from the attacker or a third party who may even be an authority. The easily abused trust placed in all P2P users to do the right thing combined with implementation flaws in P2P applications calls into question any “evidence” obtained by the authorities.”
