Sites that don t give users the option to use HTTPS make life easier for attackers trying to hijack users Web sessions or eavesdrop on them. The IETF has taken a big step toward making that more difficult, approving the HTTP Strict Transport Security (HSTS) proposal as an Internet-draft. The HSTS proposal would define a standard method for sites to declare their preference for SSL connections. There are a lot of sites that offer HTTPS connections as an option, but it s up to the user to request an SSL-encrypted connection.
Source: https://threatpost.com/ietf-approves-hsts-proposed-standard-100312/77076/