As part of our HTTPS scalability efforts, we should work towards improving the performance hit that HTTPS users incur right now.
- SNI, as to be able to send smaller, targeted certificates to users. Rolled out in Nov/Dec 2014.
- ECDSA Hybrid certificates (tracked separately, T86654)
ALPN/NPN, without SPDY. This will signal UAs to use TLS False Start.
- Tune to smaller TLS record sizes,
- OCSP stapling
- Session cache tuning (check for hit ratio, increase cache, rollovers)
SPDY, although related, is not on-topic for this. There's T35890 tracking progress for that one.
All of the above are for the most part on a newer platform, cf. T86648.