Certain sites load much slower when SSL intercepted (HTTPS proxy) but is faster when SSL is not intercepted (tunneled).

Data held in buffer for ICAP/malware inspection

Some sites expect certain data timings even though this violates the HTTP RFC. Edge SWG appliances can introduce small latency due to malware scanning.

Occasionally, this can cause some sites to introduce large delays due to incompatibilities with the latency introduced, however small.

To remedy this particular issue, you can use the CPL: 

http.response.response_data.prevent_inspection_delay(yes)

to address the issue.

For example, if the site example.com has long latency after SSL interception, try the following CPL:

<Proxy>
url.domain=example.com http.response.response_data.prevent_inspection_delay(yes)