An anonymous reader writes "The Internet Engineering Task Force (IETF) has granted the HTTP Strict Transport Security (HSTS), a security protocol designed to protect Internet users from hijacking, the status of proposed standard. The HSTS is an opt-in security enhancement whereby web sites signal browsers to always communicate with it over a secure connection. If the user is using a browser that complies with HSTS policy, the browser will automatically switch to a secure version of the site, using ‘https’ without any intervention of the user. The main purpose of the web security protocol is to prevent HTTP session hijacking where user accounts are at risk of being comprised by a malicious user who is snooping on the session traffic."
Link to Original Source