User:Bobalily/sandbox

= Network Eavesdropping (draft) = Network eavesdropping, also known as eavesdropping attack, sniffing attack, or snooping attack, is a method that retrieves user information through the internet. This attack happens on electronic devices like computers and smartphones. This network attack typically happens under the usage of unsecured networks, such as public wifi connections or shared electronic devices. Eavesdropping attacks through the network is considered one of the most urgent threats in industries that rely on collecting and storing data.

A typical network eavesdropper may be called a Black-hat hacker and is considered a low-level hacker as it is simple to network eavesdrop successfully. The threat of network eavesdroppers is a growing concern. Research and discussions are brought up in the public's eye, for instance, types of eavesdropping, open-source tools, and commercial tools to prevent eavesdropping. Models against network eavesdropping attempts are built and developed as privacy is increasingly valued. Sections on cases of successful network eavesdropping attempts and its laws and policies in the National Security Agency are mentioned. Some laws include the Electronic Communications Privacy Act and the Foreign Intelligence Surveillance Act.

Types of attacks
Types of network eavesdropping include intervening in the process of decryption of messages on communication systems, attempting to access documents stored in a network system, and listening on electronic devices. Types include electronic performance monitoring and control systems, keystroke logging, man-in-the-middle attacks, observing exit nodes on a network, and Skype & Type.

Electronic performance monitoring and control systems (EPMCSs)
Electronic performance monitoring and control systems are used by employees or companies and organizations to collect, store, analyze, and report actions or performances of employers when they are working. The beginning of this system is used to increase the efficiency of workers, but instances of unintentional eavesdropping can occur, for example, when employees' casual phone calls or conversations would be recorded.

Keystroke logging
Keystroke logging is a program that can oversee the writing process of the user. It can be used to analyze the user's typing activities, as keystroke logging provides detailed information on activities like typing speed, pausing, deletion of texts, and more behaviors. By monitoring the activities and sounds of the keyboard strikes, the message typed by the user can be translated. Although keystroke logging systems do not explain reasons for pauses or deletion of texts, it allows attackers to analyze text information. Keystroke logging can also be used with eye-tracking devices which monitors movements of the user's eyes to determine patterns of the user's typing actions which can be used to explain the reasons for pauses or deletion of texts.

Man-in-the-middle attack (MitM)
A Man-in-the-middle attack is an active eavesdropping method that intrudes on the network system. It can retrieve and alter the information sent between two parties without anyone noticing. The attacker hijacks the communication systems and gains control over the transport of data, but cannot insert voice messages that sound or act like the actual users. Attackers also create independent communications through the system with the users acting as if the conversation between users is private.

The “man-in-the-middle” can also be referred to as lurkers in a social context. A lurker is a person who rarely or never posts anything online, but the person stays online and observes other user’s actions. Lurking can be valuable as it lets people gain knowledge from other users. However, like eavesdropping, lurking into other user’s private information is violatnig privacy and social norms.

Observing exit nodes
Distributed networks including communication networks are usually designed so that nodes can enter and exit the network freely. However, this poses a danger in which attacks can easily access the system and may cause serious consequences, for example, leakage of the user’s phone number or credit card number. In many anonymous network pathways, the last node before exiting the network may contain actual information sent by users. Tor exit nodes are an example. Tor is an anonymous communication system that allows users to hide their IP address. It also has layers of encryption that protect information sent between users from eavesdropping attempts trying to observe the network traffic. However, Tor exit nodes are used to eavesdrop at the end of the network traffic. The last node in the network path flowing through the traffic, for instance, Tor exit nodes, can acquire original information or messages that were transmitted between different users.

Skype & Type (S&T)
Skype & Type (S&T) is a new keyboard acoustic eavesdropping attack that takes advantage of Voice-over IP (VoIP). S&T is practical and can be used in many applications in the real world, as it does not require attackers to be close to the victim and it can work with only some leaked keystrokes instead of every keystroke. With some knowledge of the victim’s typing patterns, attackers can gain a 91.7% accuracy typed by the victim. Different recording devices including laptop microphones, smartphones, and headset microphones can be used for attackers to eavesdrop on the victim's style and speed of typing. It is especially dangerous when attackers know what language the victim is typing in.

Tools to prevent eavesdropping attacks
Computer programs where the source code of the system is shared with the public for free or for commercial use can be used to prevent network eavesdropping. They are often modified to cater to different network systems, and the tools are specific in what task it performs. In this case, Advanced Encryption Standard-256, Bro, Chaosreader, CommView, Firewalls, Security Agencies, Snort, Tcptrace, and Wireshark are tools that address network security and network eavesdropping.

Advanced encryption standard-256 (AES-256)
It is a cipher block chaining (CBC) mode for ciphered messages and hash-based message codes. The AES-256 contains 256 keys for identifying the actual user, and it represents the standard used for securing many layers on the internet. AES-256 is used by Zoom Phone apps that help encrypt chat messages sent by Zoom users. If this feature is used in the app, users will only see encrypted chats when they use the app, and notifications of an encrypted chat will be sent with no content involved.

Bro
Bro is a system that detects network attackers and abnormal traffic on the internet. It emerged at the University of California, Berkeley that detects invading network systems. The system does not apply as detection of eavesdropping by default, but can be modified to an offline analyzing tool for eavesdropping attacks. Bro runs under Digital Unix, FreeBSD, IRIX, SunOS, and Solaris operating systems, with the implementation of approximately 22,000 lines of C++ and 1,900 lines of Bro. It is still in the process of development for real-world applications.

Chaosreader
Chaosreader is a simplified version of many open-source eavesdropping tools. It creates HTML pages on the content of when a network intrusion is detected. No actions are taken when an attack occurs and only information such as time, network location on which system or wall the user is trying to attack will be recorded.

CommView
CommView is specific to Windows systems which limits real-world applications because of its specific system usage. It captures network traffic and eavesdropping attempts by using packet analyzing and decoding.

Firewalls
Firewall technology filters network traffic and blocks malicious users from attacking the network system. It prevents users from intruding into private networks. Having a firewall in the entrance to a network system requires user authentications before allowing actions performed by users. There are different types of firewall technologies that can be applied to different types of networks.

Security agencies
A Secure Node Identification Agent is a mobile agent used to distinguish secure neighbor nodes and informs the Node Monitoring System (NMOA). The NMOA stays within nodes and monitors the energy exerted, and receives information about nodes including node ID, location, signal strength, hop counts, and more. It detects nodes nearby that are moving out of range by comparing signal strengths. The NMOA signals the Secure Node Identification Agent (SNIA) and updates each other on neighboring node information. The Node BlackBoard is a knowledge base that reads and updates the agents, acting as the brain of the security system. The Node Key Management agent is created when an encryption key is inserted to the system. It is used to protect the key and is often used between Autonomous Underwater Vehicles (AUVs), which are underwater robots that transmit data and nodes.

Snort
Snort is used in many systems, and it can be run in an offline mode using stream4. Stream4 reassembles preprocessors with another stream option. The snort-reply patch feature is often used to reconstruct executions. It is currently developed by Cisco and acts as a free network intrusion detection system.

Tcptrace
Tcptrace is used to analyze pcap-based network intercepts, which is a packeting capture network application that detects network traffic. It has an important feature that monitors eavesdropping attacks and can reconstruct captured TCP streams.

Wireshark
Wireshark, or also named Ethereal, is a widely used open-source eavesdropping tool in the real world. Most of the features in Ethereal are packet-oriented and contain a TCP reassembly option for experiments on tracking intrusion attempts.

Models against the attacks
Models are built to secure system information stored online and can be specific towards certain systems, for example, protecting existing documents, preventing attacks on the processing of instant messages on the network, and creating fake documents to trace malicious users.

Beacon-bearing decoy documents
Documents containing fake but private information such as made-up social security numbers, bank account numbers, and passport information will be purposely posted on a web server. These documents have beacons that will be triggered when a user attempts to open them, which then alarms another site that records the time accessed of the documents and IP address of the user. The information collected from the beacons is then regularly be sent to Tor exit nodes which then the user will be caught in the malicious act.

Butterfly encryption scheme
The Butterfly encryption scheme uses timestamps and updates pseudorandom number generators (PRNG) seeds in a network system to generate authentication keys and parameters for encrypted messages to be sent out. This scheme can perform in entities that are searching for a relatively low cost but efficient security scheme, and can work in different systems as it has a simple design that is easy to modify for specific purposes. The Butterfly encryption scheme is effective because it uses a changing parameter and has an unpredictable timestamp that creates a high-level security system.

Crypto phones (Cfones)
Cfones is a model built to protect VoIP communications. It uses Short Authenticated Strings (SAS) protocol that requires users to exchange keys to ensure no network intruders are in the system. This is specific to communication systems that involve both voice messages and text messages. In this model, a string is given to actual users, and to connect with another user, strings have to be exchanged and have to match. If another user tries to invade the system, the string will not match, and Cfones blocks attackers from entering the network. This model is specific to preventing man-in-the-middle attacks.

Friendly-jamming schemes (DFJ and OFJ)
Friendly-jamming schemes(DFJ and OFJ) are models that can decrease the eavesdropping risk by purposely interfering the network when an unknown user is near the area of the protected area. The models are tested by the probability of eavesdrop attacks in a testing environment, and are found that there is a lower probability of attacks compared to a system with no friendly-jamming schemes installed. A feature of the DFJ and OFJ schemes is that the models offer a large coverage secure area that is protected from eavesdroppers effectively.

Honey encryption scheme (HE)
A honey encryption scheme is used to strengthen the protection of private information of instant messaging systems, including WhatsApp and Snapchat, as well as tracking down the eavesdropper’s information. HE contains fake but similar plaintext during the decryption phase of the process of instant messaging with an incorrect key. This makes messages that the eavesdropper is trying to decrypt to be gibberish messages. HE schemes are used in specific systems not limited to instant messaging systems, passwords, and credit cards. However, applying it to other systems is still a difficult task as changes inside the scheme have to be made to fit the system.

Internet of Things framework (IoT)
The Internet of Things framework involved four layers of security measures that are management layer, cloud layer, gateway layer, and IoT device layer. The management layer handles web and mobile applications. The cloud layer looks over the service and resource management. It acts as an access point for users to connect to other internet services. The gateway layer manages the packet filtering module. It links the endpoint network of the services, processes the documents or information, and contains security tasks including authentication, authorization, and encryption. The two main tasks of the gateway layer are to detect users and perform filtering of the actual user and malicious users. The IoT device layer looks over the gateway layer’s performance and double-checks whether all malicious users are removed from the network, specifically, attestation is a mechanism to measure the end-point integrity and removes nodes from the network if necessary.

Cases of network eavesdropping
Completely trusting network devices or network companies can be risky. Users of devices are oftentimes unaware of the threats on the internet and choose to ignore the importance of protecting their personal information. This paves the way for malicious hackers to gain access to private data that users may not be aware of. A few cases of network eavesdropping discussed include Alipay and Cloud computing.

Alipay
Private information from a user of mobile payment apps, in this case, Alipay, is retrieved using a hierarchical identification specific to mobile payment apps. The system first recognizes the app used from traffic data, then categorizes the user’s distinct actions on the app, and lastly distinguishes comprehensive steps within each action. Distinct actions on mobile payment apps are generalized in a few groups including making a payment, transfer money between banks, scanning checks, and looking at previous records. By classifying and observing the user’s specific steps within each group of actions, the attacker intercepts the network traffic using and obtains private information of app users. Strategies to prevent incidents are made such as fingerprint or facial identification, and email or text confirmation of actions performed on the app.

Cloud computing
Cloud computing is a computing model that provides access to many different configurable resources, including servers, storage, applications, and services. The nature of the Cloud makes it vulnerable to security threats, and attackers can easily eavesdrop on the Cloud. Particularly, an attacker can simply identify the data center of the Virtual Machine used by cloud computing, and retrieve information on the IP address and domain names of the data center. It becomes dangerous when the attacker gains access to private cryptographic keys for specific servers which they may get data stored in the cloud. For example, the Amazon EC2 platform based in Seattle, Washington, WA, USA, was once at risk of such issues but has now used Amazon Web Service (AWS) to manage their encryption keys.

Medical records
Sometimes users can choose what they put online and should be responsible for their actions, including whether or not a user should take a photo of their social security number and send it through a messaging app. However, data like medical records or bank accounts are stored in a network system in which companies are also responsible for securing user’s data. Medical records of patients can be stolen by insurance companies, medical laboratories, or advertising companies for their interests. Information such as name, social security number, home address, email address, and diagnosis history can be used to track down a person. Eavesdropping reports of a patient’s medical history is illegal and is dangerous. To deal with network threats, many medical institutes have been using endpoint authentication, cryptographic protocols and data encryption.

Electronic Communications Privacy Act (ECPA)
In Title III of the Electronic Communications Privacy Act (ECPA), it states that it is a “federal crime to engage in wiretapping or electronic eavesdropping; to possess wiretapping or electronic eavesdropping equipment; to use to disclose information obtained through illegal wiretapping or electronic eavesdropping, or to disclose information secured through court-ordered wiretapping or electronic eavesdropping, to obstruct justice.” Federal and state law enforcement officials may be allowed to intercept with the wire, oral, and electronic communications if and only if a court order is issued, consent of the parties, or when a malicious user is trying to access the system. If the law is violated, there may be a criminal penalty, civil liability, administrative and professional disciplinary action, and or exclusion of evidence. A general penalty is not more than five years of imprisonment and no more than $250,000 for individuals and not more than $500,000 for organizations. If damages are created, there may be a $100 fine per day of violation or $10,000 in total.

Foreign Intelligence Surveillance Act (FISA)
The Foreign Intelligence Surveillance Act gives out court orders for “electronic surveillance, physical searches, installation, and use of pen registers and traps and trace devices, and orders to disclose tangible items.” Court orders issued on electronic surveillance allow the federal officials to use electronic surveillance which includes eavesdropping without violating the Electronic Communications Privacy Act or Title III specifically.

Organization of Economic Cooperation and Development (OECD)
A guideline to protecting the privacy of data of health patients is issued by the Organization of Economic Cooperation and Development (OECD). The policy states that individual patient data or personal data should be secure, and patients will not face any arbitrary losses related to invading their personal information or health conditions. The policy acts as a minimum standard for eHealth usages and it should be followed by all medical institutes for protecting the privacy of patient’s data.

Lead
In the lead, change "user's information" to "user information". The lead sentence is, content-wise, very informative and clear and easy to understand. It's a strong lead that also includes a brief mention of each of the sections in the article, and doesn't seem to include any irrelevant information.

Content
The content is all relevant to the topic, and seems up-to-date with present day. All the content that the lead mentions is present in the article. The article addresses patients' control of their medical records, which could be an underrepresented population that is often not talked about.

Tone and Balance
The content is all neutral, and there is no bias present. There are little viewpoints to be represented, as the article does a good job of stating facts and examples instead of opinions.

Sources and References
The sources are all diverse and the few links I checked out worked fine. The sources are primarily current.

Organization
The content is all well-written and written in a way that makes sense, and the way it's organized makes sense too. The sections and subsections are broken down well as well.

Images and Media
No images to evaluate.

For New Articles Only
There are an ample about of sources and there are a lot of hyperlinks to make the article more discoverable. The article also looks like a regular Wiki article and the format is good.

Overall impressions
This article is really solid and well-written. There are many sources and the content is easy to understand. I would say that if you are able to find an image to give a good break in the article, especially because it is quite long, that would benefit. However, if you cannot find an image, that is fine. Also, make sure whenever you mention network eavesdropping, that you don't capitalize both words unless it is a formal term that requires it. Overall, good job, and I think you're good to go in terms of uploading it on the main space.

Lead
The lead is concise and introduces the topic well. Some of the major sections of the article are introduced in the lead, but not all of them.

Content
Overall, the content is organized well and most information are relevant and up-to-date. I really like the way you organized your sections; it made the article easy to comprehend.

Tone and Balance
The article is neutral throughout and often includes many viewpoints on a particular subject.

Sources and References
The sources included in the article are diverse and relatively current.

Organization
The content is clear, concise, and organized into meaningful sections. No obvious grammatical errors are present.

Images and Media
Currently, there are no images included in the article draft.

Overall impressions
Overall, I think your article is looking a lot like an actual published Wikipedia article! My only suggestion would be to add images for your examples to make your article more presentable for your readers. Good work!

= Week 9 Peer Review =

Lead
The Lead includes an introductory sentence that concisely and clearly describes the article's topic, but includes information that is not present in the article. I feel the lead is overly detailed. At this section we only need to give a concise introduction of the topic. The second and third paragraph can really serve as another "description" section. You may also want to briefly mention with one or two sentences about the types of attacks and prevention methods you discuss below.

Content
The content added relevant to the topic and is up-to-date. There are no content that is missing or content that does not belong. The content is in a very good shape that is ready to be moved to the main space.

Tone and Balance
The content added is neutral. No viewpoints are overrepresented, or underrepresented. The content added does not attempt to persuade the reader in favor of one position or away from another.

Sources and References
All new content is backed up by a reliable secondary source of information. The sources are thorough and are current. The sources are written by a diverse spectrum of authors. The links work.

Organization
Just some minor grammatical issue you may want to consider. Overall very good shape.

as it is simple to successfully network eavesdrop successfully.

This includes electronic performance monitoring and control systems, keystroke logging, (try to avoid unclear antecedent to make the article more easy to read)

Through By monitoring the keyboard strikes' activities and sounds, the message typed by the user can be translated.

Overall impressions
The article so far is in a very good shape that is ready to move to the main space. Only minor changes required to polish the article.

Lead
The Lead been updated to reflect the new content added by your peer. The first sentence is an introductory sentence. The lead section has talked about all the major sections in the article. The Lead include information that is not present in the article. It's just the right amount. Well done! In general, I think this is a great lead section.

Content
All of them are relevant. I can see several sources from the recent years. There is no content that is missing or content that does not belong. I think this article doesn't really address the minority groups, given this privacy + topic is really technical. This article did contribute to fix the Wikipedia content gaps.

Tone and Balance
The content added is neutral. There are no claims that appear heavily biased toward a particular position. There are no viewpoints that are overrepresented, or underrepresented. The content added does not attempt to persuade the reader in favor of one position or away from another.

Sources and References
The article did a really great job on the in-text citations. There are a wide spectrum of sources being cited. I can see several sources that come from the recent years. The sources are written by a diverse spectrum of authors. Check a few links. They work.

Organization
The structure of this article follows a logical order (from attacks to prevention, from model to real life cases). The content rarely have spelling or grammatical errors. The content added well-organized - i.e. broken down into sections that reflect the major points of the topic.

For New Articles Only
This article has more than 20 sources. Great work! I think the list of sources is pretty exhaustive so far. The article follow the patterns of other similar articles - i.e. contain any necessary infoboxes, section headings, and any other features contained within similar articles. The article link to other articles so it is more discoverable.

Overall impressions
The content of this article has provide a comprehensive and systematic understanding on network eavesdropping. Overall, this article is in a really good shape. The language is appropriate and the content is relevant. The main sections flows in a comprehensive order. The author also have done a great job on finding and citing sources. I would say try to add pictures / address the Wikipedia equity gaps if possible. In general, this is already a fully developed article. Great work!

Article Feedback (Leadership)
Great job with your article! I really like the organization of your article and how you broke it down into sections about the different types, prevention tools, and models. I also like how you included information about cases. Also, great job including all 20 of your sources from your bibliography into your article. From reading your article it is evident that thorough research has been completed.

Here are some suggestions:


 * I would consider adding more citations in the lead section and at the beginning of the “Types of attacks” section.
 * I would consider adding more hyperlinks to other Wikipedia articles throughout your article.
 * For example, “Firewall,” “IP Address,” “C++”
 * I would also suggest thinking about adding an image.
 * Headings need to only have the first word capitalized, and this is a Wikipedia rule.
 * For example, “Types of attacks” not “Types of Attacks”

= Week 8 Peer Review =

Lead
Lead is very well written, gets straight to the point, and states everything important to introduce the reader to the topic. I felt like I understood what the article was going to be right away (good job!). I think that the second paragraph doesn't need to necessarily be in the lead, so consider if you want to create a separate section to describe everything about a typical network eavesdropper. Another suggestion would be to limit the amount of "such as" that you use and use another synonym.

copy edit: first sentence, "also know as an eavesdropping attack, sniffing attack, or snooping attack." (i think it's better to singularize it). Also probably change "is an attack" to maybe method so that you don't use attack so many times. Maybe also change "It" at the start of the second sentence of first paragraph to be more specific like This method or attack or process, etc.

copy edit: The first sentence in the second paragraph was a bit confusing at this part: "....low-level hacker as its simplicity.." It doesn't come off to the reader very clearly, so maybe change it to "low-level hacker as it is simple to successfully network eavesdrop." For "This is a growing concern", try to be more specific and say something like "The threat of network eavesdroppers are a growing concern...."

Content
You have lots of really good sections with very important information. I like how you brought up real life cases with Alipay and how there are related laws that exist to protect people against network eavesdropping. This is relevant to everyone, and this information can benefit a lot of people. I assume you will be adding a lot more to the related laws and real life cases, and I'm curious to see what other examples there are that most readers may not know about. More specifically, under the Bro section, the history part that you bring up about Berkeley is a nice addition, and I think you should add more as to how it was developed, who developed it, etc.

copy edit: For the Bro section, "Bro is a system"

copy edit: For the Snort section: "Snort is used in many systems, (add comma) and it can be run in an offline mode using stream4. (end sentence here and start new sentence) Stream4 reassembles preprocessors with another stream option.

Tone and Balance
The article is written in a neutral tone and the information seems very balanced. A lot of the article is just stating the information or describing the information. There is no bias or trying to force the readers to think a certain way or believe things to be a certain way.

Organization
I think the sections on types, cases, models, and related laws are well organized and is easy to follow. However, I think the open source tool and commercial tool sections are a bit confusing. Although it describes that all of the subsections are open source or commercial, but as a reader, I'm not sure if I know how it connects to the topic. Maybe reword them as "Tools to prevent network attacks or keep networks secure" and include the open source and commercial tool as two big sections under that. Just a suggestion and something to think about.

Sources and References
I noticed that for most of you article you repeated your sources multiple times within one paragraph. I think if you reference one article throughout the whole paragraph you can just cite it once at the end. This way you don't have to unnecessarily cite the same article so many times.There were some instances where you switched off/used different sources, and those can stay the same. Overall, you cited all the sources you needed to back up your statements, and I don't see anything that is missing a citation.

For New Articles Only
This article meets the notability requirements, and contains a long list of trustworthy articles to back up the claims made. The article also follows the pattern of other Wikipedia articles and is organized quite nicely. One suggestion would be to bold the name of your topic (e.g. Network Eavesdropping) in the first sentence of the lead as lots of other Wikipedia articles do the same thing.

Overall impressions
Overall, it was very evident that you took a lot of time to research and write out all the information you learned. This is developing into a great articles, and there are just a few changes as mentioned above. The main meat of the article however, is great and provides good information to the readers. Keep up the good work, and I look forward to seeing your article improve!

Lead
The lead gives a succinct and informative overview of eavesdropping attacks. It provides broad overview of types of eavesdropping attacks and briefly mentions defense tools (open-source and commercial). Maybe expanding a bit more on the types of laws concerning eavesdropping attacks would make Lead more fleshed out and comprehensive. The Lead is concise; could expand a bit more on the other sections in your article here, however (such as the the types of laws concerning eavesdropping attacks and successful eavesdropping cases). Good lead section so far!

Content
All content is related to the article topic. Some sections could be expanded a bit more - for instance, in the "Tools to Prevent Eavesdropping Attacks," tools are listed and given a one-sentence explanation. It might be interesting to expand on these explanations (maybe talk about what companies/actors have implemented these tools, and what degree of success they had in doing so). This article does not address topics related to historically underrepresented populations, but it does discuss how people online have been vulnerable to breaches in privacy due to eavesdropping attacks. Content is good! Could potentially expand on some sections to make article more fleshed out as a whole.

Tone and Balance
Content is factual and does not include judgement statements. It only presents factual information and does not aim to persuade. Good job overall! Tone is neutral and the article seems focused on informing rather than persuading.

Sources and References
All content has a citation. Sources are drawn from a variety of academic journals (such as those focusing on telecommunications, computer security, law, etc). All seem to be published in the 2000s/2010s. There seems to be a diversity of authors. All links work. Good sources and in-text citations. Make sure to add your last six sources!

Organization
All content is easily understandable and concise. A few grammatical errors here and there, which I've corrected. Overall, nothing major. The organization is intuitive and flows well. Good organization overall!

Images and Media
Consider adding some images to enhance your article.

For New Articles Only
There are 14 reliable sources listed. The list seems good so far. Make sure to add your remaining six sources. This article does follow a similar pattern of other articles. Adding an infobox could be a nice addition. There are hyperlinks provided throughout.

Overall, really strong draft of a new article! Consider adding an infobox and some more hyperlinks.

Overall impressions
The content provided is succinct, clear, and offers good information on eavesdropping attacks. Lead section is concise and provides a good overview of eavesdropping attacks. Sections are organized intuitively and the flow of the article overall is good.Adding more pictures and hyperlinks to other Wikipedia articles could help enhance the article.Good job overall!

= Week 7 Peer Review =

Lead
The introductory sentence is concise, but I would like an explanation or cite to another wiki article what eavesdropping attacks and snooping attacks are. Similar to how you linked sniffing attacks. The lead does provide good background information, and clearly outlines the upcoming information in the last sentence.

Content
The content is relevant and has articles that are up to date. The article's content explaining types of attacks, open source tools, commercial tools, models against the attacks, and related laws and policies all contribute to a better understanding of network eavesdropping. They are also all concise and clearly written so that someone like me who has little tech knowledge can understand most of the article.

Tone and Balance
The overall tone is neutral. The article clearly only defines and explains certain types of attacks, tools, and laws.

Sources and References
There are some content that is not backed up by a secondary source. This includes the 2nd paragraph in the lead, the last sentence under Man-in-the-middle attack, the last sentence in Bro, the last sentence in CommView, the last sentence in Firewall, and the last sentence in Cryto Phone (Cfones). It may just be a simple moving of the previous sentence's citation to the last sentence. I checked three of the links and they work.

Organization
As mentioned before, the content is written concisely and clearly so that someone like me with little tech background can understand the majority of the article. I did not see any grammatical or spelling errors, and the content is well organized

Images and Media
There is currently no images.

Overall impressions
Overall, the article is strong. The article is written concisely and clearly so that I am able to understand most of it. The only thing I would like is more information on some of the things, such as CommView, which only has two sentences. However, I am aware that this is only a draft and you have more citations that will be added int he future.

Lead
I think your lead is well written, and gives a clear overview of what content the article covers. I like how you define network eavesdropping and then give examples for the reader. I noticed that you like to use the phrase “such as” a lot, maybe switch up your working on the second one? You include a brief overview of the next sections, and I think the length of your lead is great.

copy edit: The first sentence sounds a little wonky, maybe say “Network eavesdropping, also known as eavesdropping attacks, sniffing attacks, or snooping attacks, is an attack that…”

copy edit: change “This is a growing concern in the public as technology advances” to “this is a growing public concern as technology advances”

Content
I think you cover a really good range of topics and do not give too much weight to any particular topic. I also like how you give a brief introduction at the beginning of each major section. Your content is really relevant, and up to date as well. I especially like reading about the different types of attacks; I think that section is really well written.

copy edit: (In EPMCS) “but instances of unintentional eavesdropping can occur, for example, when employees' casual…”

copy edit: “Man-in-the-middle attacks is an active…” change to “A man-in-the-middle attack is an active...”

copy edit: chaosreader opening line is a bit wordy / hard to digest.

Suggestion: (Tcptrace section) Include more info about pcap-based networks–as a new reader to this subject, I do not know what a pcap-based network is.

Tone and Balance
You keep a neutral position and present facts without a bias. You do not try and convince the reader to side with any viewpoint, and you also discuss both positives and negatives about your topics (such as HE schemes and their benefits and difficulties).

Sources and References
You cite your information throughout the whole article, and use a good range of sources. I would go back and make sure every article has at least one source, because there are a few that do not have any references. You also link a lot of Wikipedia articles, which I think is really helpful for the reader to get a better sense of the scope of your topic.

Organization
I think your organization is great and your lead captures the intersections between your topic really well. I would double check some grammar (I’ve already mentioned some copy edits) but overall the article is well written and flows nicely.

For New Articles Only
This article definitely meets Wikipedia’s Notability requirements, because it is supported by many neutral and reliable articles. You have a lot of sources, which means you cover a wide range of information on network eavesdropping. I also like how you have a see also section, which follows the format of other Wikipedia articles and allows for more Wikipedia traffic.

Overall impressions
copy edit/suggestion: I don’t think network eavesdropping needs to be capitalized throughout the article because it is not a proper noun.

Overall, this is a great article! I really enjoyed reading it, as I think you have a writing style that makes this topic easy to understand for people new to this subject. It’s super cool that Bro emerged at UC Berkeley! Aside from some copy edit changes, I think you have a solid article and provide a lot of content. Great article so far! Madssnake (talk) 00:27, 6 November 2020 (UTC)

= Week 6 Peer Review =

Peer Review (Showtime oski)
Hi Bobalily, here's my peer review for your "Network eavesdropping" article draft!

Lead
Your lead does a good job of summarizing what Network Eavesdropping is. It includes what kinds of networks and devices such eavesdropping usually occurs in, and hints at how this is a major concern and to whom. I appreciated that you included links to other articles (something I have yet to do in my own article draft!).

For this entire peer review, I will provide you with suggestions, and if you find some of them nit-picky, that would be my fault because they reflect my own personal preferences -- of course, you do not have to change anything if you disagree with my suggestions.

Here are some things you might want to address or change in your lead:

You might want to include a brief overview of the "Types," "Open Source Tool," "Commercial Tool," and "Models against the attacks" sections. In the last part of your second paragraph's first sentence, "and more research and discussions....," who's bringing the researching and discussions and what kind of research and discussions are they? What is at stake for the public? What do they want to protect?

In regards to copy editing: your first sentence could be a little cleaner -- perhaps something like: "Network Eavesdropping, also named a sniffing or snooping attack, is a [insert specific adjective] attack that retrieves...."; in the last sentence of your lead's first paragraph, make sure that the verb matches the noun -- for "attacks" the verb is "are" because the noun is plural; the end of the last sentence of the lead's second paragraph "its simplicity in succeeding in network eavesdropping" is a little confusing -- maybe change it to something like "is considered a low-level hacker because experts consider successful network eavesdropping to be simple" or something like that.

Content
Your content was very informative and relevant to your topic. All of your content was good and on point. I loved the part in the keystroke logging section about typing and eye movement analysis, and I also enjoyed your open source tool section. In your "Wireshark" subsection, I don't know what TCP reassembly options are; you might want to link that to a relevant Wikipedia page. For the "AES-256" section, you might want to elaborate on what kinds of infrastructures it is used to secure.

In regards to copy editing: In the second sentence of your "EPMCSs" section, I would add a "when" before "employees' conversations..." or, to make the phrase cleaner (the ", or casual phone calls..." is a little awkward), I would change it to something like "for example, when employees' casual phone calls or conversations would be recorded." Change "Keystroke logging is programs" to "are" or change it to "Keystroke logging is a program that can..."; same sentence, "which then can be used to analyze as keystroke logging" -- analyze what? In your "Wireshark" subsection, change "feature" to "features" to match the verb "are."

In your "Home Encryption scheme" section, "This makes an eavesdropper trying to decrypt the message to be gibberish texts" -- are you trying to say that the texts will become gibberish for the eavesdropper? In your ECPA section, add "fine" after "per day" in the sentence "If damages are created, there may be a $100 per day of violation or $10,000 in total."

Tone and Balance
The tone of your article draft is neutral. There are no claims that appear to be heavily biased toward a particular position. There are no viewpoints that are over- or under- represented. The content does not attempt to persuade the reader to favor one position or disfavor another.

Sources and References
The sources are all backed up reliable secondary sources. The sources are all current; the oldest is from 2006, and the most recent is from 2020. The sources appear to be written by a diverse spectrum of authors, including Chinese and South Asian authors. I have checked on some of the links, which worked.

Organization
The content added is well-written. It is, for the vast majority of the article, concise and easy to read, even if I do not understand some of the technical points. I did not see any spelling errors. See my copy-editing suggestions for grammar, clarity, and conciseness. The content is also well-organized with clear and appropriate sections and subsections.

Overall impressions
The content you added expands greatly on the little stub in the "Eavesdropping" Wikipedia page. You cover much of the current technologies and counter-technologies, as well as related legal and policy issues. Your write clearly and concisely without overly depending on technical jargon. See my previous suggestions for what can be improved. Great job, Bobalily!

Lead
The lead is current, reflects the new content added and concise. There is a clear explanation for the topic but there does not seem to be a breif description of the article's major contents. I would recommend a content table, since the article contains lots of information, a content table can provide the reader with a better idea of what will the article cover.

Content
The content added is relevant to the topic and up-to-date. There are an abundant of information but all the them are tightly related to the topic. The article does provides various sources from different backgrounds. It's not related to historically underrepresented populations or topics.

Tone and Balance
The tone is neutral, and no claims appear to be biased. Viewpoints are not over ot underrepresented and there is no persuasion towards a certain position.

Sources and References
The new content is all backed up by a reliable secondary source of information and they are thorough. The sources involve a diverse spectrum of authors with none of them being overly used, and the links I check worked.

Organization
The content is clearly written and easy to read. There is no grammatical or spelling errors I found. Each section is welly organized and reflect the major points of the topic.

Images and Media
There is currently no images.

Overall impressions
The added content improved the overall quality of the article by providing more information on eavesdropping. More images can be inserted to provide a more direct sense of this topic or providing some examples to this topic.

= Evaluate an article (Information Privacy Wiki Page) =
 * Name of article: Information privacy
 * This article is provided to evaluate.

Lead
The Lead included an introductory sentence that concisely and clearly describes the article's topic.

The Lead did not include a brief description of the article's major sections.

The Lead did not include information that is not present in the article.

The Lead is very concise.

Content
The article's content is somewhat relevant to the topic.

The content is not too old but I would not say it is up-to-date.

I think there is a lot of missing or content that does not belong since its length is relatively much shorter than most wikipedia pages.

The article dealt with one of Wikipedia's equity gaps. It addressed topics like medical/ financial section where it indirectly relates to some underrepresented populations.

Tone and Balance
The article is neutral.

There are no claims that appear heavily biased toward a particular position.

There are viewpoints that are underrepresented.

I don't think the article attempts to persuade the reader in favor of one position or away from another.

Sources and References
All facts in the article are backed up by a reliable secondary source of information.

I think the sources are not thorough.

The sources are not too old but not very current.

The sources are not written by a diverse spectrum of authors.

Not all links work.

Organization
The article is very concise, clear, and easy to read.

The article does not have any grammatical or spelling errors.

The article is very well-orgainzed.

Images and Media
The article does not include images that enhance understanding of the topic.

No images, so I cannot answer the next 3 questions.

Talk page
Suggestions on moving the article title to 'informational privacy" is mentioned, along with problems on sources and citations.

The article is rated C on quality and High-Importance in the importante scale. It is a part of three WikiProjects (WikiProject Computing, WikiProject Internet, WikiProject Mass surveillance).

Overall impressions
The article's overall status is an ok.

The article's strength is that it is an important topic so I would assume a lot of people would view it.

The article can have more edits and include more updated information to make the page more in-depth and specific.

The article is poorly developed.

= Evaluate an article (Mass Surveillance Wiki Page) =


 * Name of article: Mass surveillance
 * This article seemed interesting to evaluate.

Lead
The Lead included an introductory sentence that concisely and clearly describes the article's topic.

The Lead included a brief description of the article's major sections.

The Lead did not include information that is not present in the article.

The Lead is very concise.

Content
The article's content is relevant to the topic.

The content is not too old but I would not say it is up-to-date(2013).

I think there is the content is pretty good, but it may be great if it can included every single country.

The article dealt with one of Wikipedia's equity gaps.

Tone and Balance
The article is neutral.

There are no claims that appear heavily biased toward a particular position.

There are viewpoints that are underrepresented(countries not mentioned).

I don't think the article attempts to persuade the reader in favor of one position or away from another.

Sources and References
All facts in the article are backed up by a reliable secondary source of information.

I think the sources are not thorough.

The sources are not too old but not very current(2013).

The sources are written by a diverse spectrum of authors.

All links work.

Organization
The article is very concise, clear, and easy to read.

The article does not have any grammatical or spelling errors.

The article is very well-orgainzed.

Images and Media
The article included images, but it does not enhance my understanding of the topic.

Images are well-captioned.

All images adhere to Wikipedia's copyright regulations.

I think the images are laid out in a visually appealing way, but could be better.

Talk page
Suggestions on adding more facts to support the article are given, as well as problems on sources are changed.

I do not think the article is rated. It is of interest to be part of a WikiProject.

Overall impressions
The article's overall status is an ok.

The article's strength is that it tries to cover a lot of different areas of the world.

The article can have more in-depth discussions on each country and more updated examples or leading to other wiki pages..

The article is poorly developed.