Would it be possible to get support for HSTS as more browsers are starting to support it (Chrome, et all)? It's a simple header addition similar to expires.
https://secure.wikimedia.org/wikipedia/en/wiki/HTTP_Strict_Transport_Security#Limitations
The particular part of interest is the...