Abstract: Fault tree analysis (FTA) can be used to analyze the events and states of system failure. It is an effective method in analyzing the reliability and safety of safety-critical system. Time Petri nets (TPN) describing temporal concurrent system can be used to model dynamic behavior of the system. However, safety of the model, constructed by TPN, can't be proved strictly by TPN itself. In this paper, a new method, combining the advantages of TPN and FTA, is presented. The models of interlocking system are analyzed by this method and some reformative approaches to the unsafe models are also proposed.