In line with Article 6(4) of the Cyber Solidarity Act (CSoA) :
Information sharing as referred to in paragraph 1 between Cross-Border Cyber Hubs shall be ensured by a high level of interoperability. To support such interoperability, ENISA shall, in close consultation with the Commission, without undue delay and in any event by 5 February 2026, issue interoperability guidelines specifying in particular information-sharing formats and protocols, taking into account international standards and best practices, as well as the functioning of any established Cross-Border Cyber Hubs. Interoperability requirements provided for in the cooperation agreements of Cross-Border Cyber Hubs shall be based on the guidelines issued by ENISA.
ENISA has been tasked with drafting Interoperability Guidelines, which will define information-sharing formats and protocols to support collaboration between Cross-Border Cyber Hubs and other stakeholders like the CSIRTs Network. This task has been carried out in close consultation with the European Commission (EC), European Cybersecurity Competence Centre (ECCC), CHIEF Project, Cross Border Cyber Hubs and CSIRTs Network Members and with due regard to international standards and best practices based on ENISA previous work on proactive detection . Article 6(1) and Recital 19 of the CSoA set out the initial categories of information Cyber Hubs are expected to exchange to improve the quality and effectiveness of threat intelligence.
Current version: Interoperability Guidelines v 1.0
Next steps: ENISA, in consultation with the relevant stakeholders, will periodically update the guidelines to support the growth of the Cross-Border Cyber Hubs and the EU cyber security ecosystem at large. Future developments could cover uses cases per type of data developed together with the Cross-Border Cyber Hubs and any relevant topic that will emerge as the Cyber Hubs progress.