This paper describes an approach to analyzing security failure-tolerant (SFT) requirements that are specified by means of SFT use cases, along with security use cases and application use cases for application systems. The SFT requirements are analyzed with the analysis model that consists of the static model and dynamic model. A meta-modeling approach is taken to specify the static and dynamic models for analysis of SFT requirements. Threats are identified in the analysis of SFT requirements, and SFT countermeasures against the threats are specified in the analysis model. An online shopping system is used for illustrating our approach.