Analyzing safety and security together in the concept stage of system development can reduce redundant work and inconsistency in the identification of safety and security requirements. STPA is a safety analysis technique that also allows analyzing security concerns. STPA does not employ threat models to identify loss scenarios. Threat models allow identifying, enumerating, and prioritizing potential threats from a hypothetical attacker's point of view. STRIDE is a widely employed threat model for identifying computer security threats. In this paper, we extend STPA with the STRIDE threat model to identify security loss scenarios and security requirements. We evaluate our approach in an example. The proposed STPA extension allowed performing a more complete analysis in the concept stage.

在系统开发的概念阶段一起分析安全性可以减少冗余工作，并减少安全性和安全性要求识别中的不一致。STPA是一种安全分析技术，还可以分析安全性问题。STPA不使用威胁模型来识别损失情况。威胁模型允许从假想攻击者的角度识别，枚举潜在威胁并对其进行优先级排序。STRIDE是一种广泛使用的威胁模型，用于识别计算机安全威胁。在本文中，我们使用STRIDE威胁模型扩展了STPA，以识别安全损失场景和安全要求。我们以一个示例评估我们的方法。提议的STPA扩展允许在概念阶段进行更完整的分析。