System Theoretic Process Analysis (STPA) Recommended Practices
for Evaluations of Safety-Critical Systems in Healthcare
APPENDIX – STPA and Medical Devices
J-3187-5
This recommended practice supplements existing SAE guidance on the application of the System Theoretic Process Analysis (STPA) to safety critical systems in healthcare with a focus on medical devices. The expanded guidance provides a concise set of proven techniques practitioners have successfully applied when using STPA on safety-critical, human-interfacing healthcare systems. The practice is not meant as a stand-alone document but is expected to be used in conjunction with other SAE guidance involving STPA.
This recommended practice does not repeat aspects of the STPA process captured in other documents. Rather, this document includes healthcare-specific considerations not captured in other documents. The document is meant to provide broad and generalized guidance and is meant to be applicable across any domain.
Rationale: The goal of this document is to provide expanded guidance to safety practitioners working in the healthcare device space in order to enable more effective and holistic system engineering outcomes. STPA has proven suitable for addressing both safety and security concerns in healthcare systems. However, there is little guidance on how to apply this to embedded healthcare systems. The following guidance is expected to address this shortfall.