Host headers cannot be used for SSL because the setup of the SSL connection takes place when only the requested IP address is available to IIS.

The best you can do with a single IP address is set up a non-SSL website for the host header www.foo.com and have it redirect to https://foo.com

This will work fine if people type www.foo.com in their browser as long as they dont type the HTTPS in front.

BTW the option you want is: "A permanent redirection for this resource"

Jorgie