I have just started enabling Nginx with TLS 1.3 via BoringSSL on my Cloudflare origin backend servers.
But curious if
- Cloudflare have any plans for Edge servers to speak and communicate with origin backends via TLS 1.3 ? And
- If so, will we one day be able to speak TLS 1.3 0-RTT between Cloudflare Edge and origin backends ?
- If TLS 1.3 0-RTT between Edge and origin is planned, would it be enough for origin backends to implement Cloudflare Authenticated Origin Pulls and CF Full SLL, to protect against 0-RTT replay attacks on the origin backend servers ?