Origin Server Connection Security with Universal SSL

On September 30, 2014, CloudFlare introduced Universal SSL, providing HTTPS support for all websites by default. This feature offers state-of-the-art encryption between browsers and CloudFlare's edge servers, ensuring web traffic privacy and security from tampering. Users can upgrade their site from Flexible SSL to Full or Strict SSL using three options: Option 1 involves creating a self-signed certificate for Full SSL mode; Option 2 entails obtaining a certificate from a trusted Certificate Authority (CA) for Strict SSL mode; and Option 3, currently in development, allows users to send their Certificate Signing Request (CSR) to CloudFlare for instantaneous certificate acquisition. This feature will provide encrypted and authenticated connections between the origin server and CloudFlare.