HTTP Strict Transport Security has been approved by the IETF as a proposed standard, which is excellent indeed. Nice work, +Jeff Hodges, +Colin Jackson, +Adam Barth, et al.

TL;DR: You can explain to a browser that it should always connect to your sites via HTTPS, regardless of address bar typos or man-in-the-middle attacks. Nice, eh? If you'd like more details, take a quick look at https://mikewest.org/2011/10/http-strict-transport-security-and-you for a brief walkthrough.
Shared publiclyView activity