First of all, assuming that the subject uses a router (hard route) instead of a soft route, it takes some technology to capture packets through the router. If your parents are not engaged in IT and network security, you can rest assured.
If the owner uses soft routing, it will be much more convenient to catch the bag. For example, I use my laptop to open a wireless hotspot, and my mobile phone connects to the hotspot. With Wireshark, I can immediately capture the data packets of my mobile phone.
Several targets are captured in the picture.
However, when we want to further obtain the novel content browsed by mobile phone, we find that the data packets returned by the website are all TLS protocol, and the content is encrypted. We can't see the content of the novel browsed by mobile phone, and we can't see the complete website (only the domain name) requested.
In fact, websites have generally adopted SSL/TLS encryption suite to encrypt HTTP communication (namely HTTPS). Even if the parents successfully capture the router package, they will see all the encrypted contents as shown in the above picture. Only the client and the server know the communication content between the client and the website. Even if the eavesdropper completely captures all the communication content, there is no way to decrypt it. "The whole novel network" is a novel website that I specially found without HTTPS, and other mainstream novel websites use HTTPS. As for how SSL/TLS ensures communication security, the space here is limited for the time being. If the subject is interested, you can learn cryptography.
There is only one way to break through the encryption protection, that is, let the client install the self-signed certificate of the middleman. The installation method of Android mobile phone is to enter the settings, find the "certificate store" and choose to install CA certificate from the mobile phone store. If a certificate is installed, the middleman can replace the server's certificate with his own certificate. Since the mobile phone has trusted the certificate of the middleman, it will continue to communicate with the server. So that the middleman can decrypt the message. Fiddler, the package grabbing tool, acts as a middleman. If you want to decrypt HTTPS with a violinist, you must trust the violinist's self-signed certificate.
In addition, in the high version of Android system, the application program does not trust the certificate installed by the user by default, so even if the middleman certificate is installed, there is no way to decrypt it.
Therefore, the subject can rest assured that the modern cryptographic system can well protect the communication security. As long as the topic is not an unpopular application, there is generally no need to worry about the transmission content being eavesdropped. When reading novels on the web page, pay attention to the small lock on the left side of the website, and some indicate that the website uses HTTPS, so you can browse with confidence.
However, there is a disadvantage that the domain name of the website visited by the subject can definitely be caught, that is, you can see what website/application you are visiting. Some routers have this function, for example, you can see that an ip visited the starting point at a certain time (the browsing content is invisible because it is encrypted with TLS). If the subject wants to avoid this hidden danger and is willing to toss and turn, he can use SSL VPN to connect to the trusted node and surf the Internet through the proxy of the trusted node, so that the communication content is completely confidential.