The Dutch Standardisation Forum has launched an online consultation on making updated standards for sharing cyber threat information mandatory across government. You can respond until 16 February 2026.
What is the proposal about?
The consultation focuses on version 2.1 of the STIX and TAXII standards. These standards enable organisations, such as Security Operations Centres and CERTs, to exchange cyber threat information in a structured and automated way.
Currently, older versions of these standards are listed under the ‘comply or explain’ principle. The consultation proposes replacing them with version 2.1, which better reflects current practice and is already in use by organisations like the National Cyber Security Centre (NCSC).
Have your say
You can share your views on the expert recommendation to mandate this version via internetconsultatie.nl (Dutch). The Standardisation Forum will consider all responses in their final advice to the Government-wide Digital Policy Council (OBDO).
