Complete Learning Module

STPA

Apply Systems-Theoretic Process Analysis to identify unsafe control actions and loss scenarios in complex automotive systems, including advanced driver assistance and autonomous driving.

11
Chapters
6
Interactive Tools
1
Case Study
1
Video
Start LearningView Curriculum

What You'll Learn

Build complete competency in stpa through structured, progressive learning.

Build System Control Structures

Construct complete hierarchical control structure diagrams that capture all controllers, controlled processes, and feedback paths.

Identify All Unsafe Control Actions

Apply the four UCA guide words systematically to every control action to generate a comprehensive UCA table.

Derive Causal Loss Scenarios

Develop detailed causal scenarios explaining how each UCA can arise, covering hardware, software, and human factors.

Apply STPA to ADAS Systems

Extend STPA methodology to complex automated driving functions with multi-layer control architectures and ODD constraints.

Integrate STPA with ISO 26262

Use STPA outputs as structured inputs to HARA, functional safety requirements, and safety architecture in ISO 26262.

Combine STPA with Traditional Methods

Design a combined hazard analysis strategy using STPA, HARA, and FMEA to achieve comprehensive safety coverage.

11 Comprehensive Chapters

Each chapter builds your stpa expertise systematically from foundations to advanced application.

1

STPA Overview

Understand the motivation for STPA, its advantages over traditional failure analysis, and where it fits in the safety process.

Why STPA?STAMP foundationScope of application
2

STAMP Model Foundation

Learn the Systems-Theoretic Accident Model and Processes framework that underpins STPA analysis.

Safety constraintsControl hierarchyEmergent properties
3

Control Structure Modeling

Build hierarchical control structure diagrams that capture controllers, controlled processes, and feedback channels.

Controller identificationFeedback pathsEnvironment actors
4

Step 1: Unsafe Control Actions

Apply the four UCA guide words to systematically identify unsafe control actions for every controller command.

4 UCA typesGuide word applicationUCA table
5

Step 2: Loss Scenarios

Derive the causal loss scenarios that explain how each unsafe control action can occur in practice.

Scenario categoriesCausal factorsScenario table
6

Automotive Examples

Apply STPA to representative automotive systems: adaptive cruise control, lane keeping assist, and automated parking.

ACC analysisLKA analysisAutomated parking
7

STPA vs HARA & FMEA

Compare STPA with HARA and FMEA, understanding unique insights each method provides and how they complement.

Coverage comparisonUnique STPA insightsCombined strategy
8

ISO 26262 Integration

Use STPA results as input to HARA, functional safety requirements, and safety architecture decisions in ISO 26262.

HARA inputFSR derivationEvidence mapping
9

Autonomous Systems

Extend STPA to highly automated and autonomous driving systems with complex multi-controller architectures.

SAE Level 3-5ODD constraintsMRC & MRC states
10

Tools & Automation

Survey available STPA tools, templates, and automation approaches including model-based STPA generation.

STPA tools surveyModel-based STPAExport formats
11

Best Practices

Apply proven STPA best practices for team facilitation, scope control, and integration with existing safety processes.

Team facilitationScope managementReview process
Visual Learning

6 Interactive Diagrams

Experiment with visual tools that bring stpa concepts to life.

Control Structure Builder

Construct hierarchical control structure diagrams with controllers, processes, and feedback channels interactively.

UCA Analysis Table

Systematically apply the four UCA guide words to every control action and generate a complete UCA table.

Loss Scenario Generator

Derive causal loss scenarios from identified UCAs with structured scenario categorization and tracking.

STPA vs FMEA Comparator

Compare STPA and FMEA coverage side-by-side for the same system to identify analysis gaps.

Safety Constraint Mapper

Map STPA safety constraints to ISO 26262 functional safety requirements with bidirectional traceability.

Control Loop Animator

Visualize dynamic control loop behavior and failure modes in an interactive animated diagram.

Real-World Application

STPA for Adaptive Cruise Control (ACC) with Stop-and-Go Capability

Perform a complete STPA on an ACC system including control structure modeling, UCA identification across all controller commands, and loss scenario derivation.

  • Control structure with 5 controllers: ACC ECU, brake actuator, engine ECU, camera, radar sensor
  • 8 control actions analyzed producing 31 unsafe control actions across 4 UCA types
  • Critical UCA: "ACC applies brakes when not needed at highway speed" - Loss scenario: sensor latency + FP detection
  • Safety constraint SC-12 derived: "ACC shall not apply brakes unless deceleration demand > 0.1g and object confirmed by 2 sensors"
  • ISO 26262 mapping: 4 UCAs linked to 4 new FSRs not captured by conventional HARA

UCA Analysis Table

CA-03 (Brake): UCA-3.2 - Braking applied when leading vehicle is not present [Too soon/wrong time]
Unlock in course

Ready to Master STPA for Modern Automotive Systems?

Explore 11 comprehensive chapters with interactive control structure tools and a complete ACC case study.

Start Learning Now
11 Chapters6 ToolsCase StudyVideo