SOURCE: Tripwire, Inc.

Tripwire, Inc.

August 03, 2009 11:00 ET

Medfusion Adopts Tripwire Enterprise as a Prescription for PCI Compliance

Securing Patient Portal Communications and Transactions Ensures Confidence and Security

PORTLAND, OR--(Marketwire - August 3, 2009) - Tripwire®, the leader in data center compliance and infrastructure management, announced today that Medfusion, a provider of patient-to-provider online communications, has adopted Tripwire Enterprise to achieve and continuously sustain compliance with the Payment Card Industry Data Security Standard (PCI DSS). The Tripwire solution is also being used to improve change process controls in Medfusion's patient portal systems that support online transactions with customers.

Tripwire enables continuous compliance to regulatory standards by providing a solution for change control, while making efficient use of resources through automated methods for achieving and maintaining a secure datacenter. In addition to helping Medfusion maintain a PCI compliant environment, Tripwire also improves overall security and operational performance by automatically analyzing detected changes against best practice security policies and immediately alerting when any policy has drifted out of an approved state due to the change. Through real-time change detection and analysis, Tripwire uses Enhanced File Integrity Monitoring to close the time gap between a bad change occurring and detecting and correcting it.

"We found that Tripwire fulfills the PCI DSS requirement for file integrity monitoring better than any other solution," commented James Evans, Director of Information Technology for Medfusion. "We will be able to maintain a high level of service and security to our customer base through proactive processes and policy compliance capabilities," he added.

Tripwire Enterprise monitors changes to a system and detects and reports non-compliant and unauthorized changes. The solution automates PCI requirements for configuration analysis and file integrity monitoring while strengthening security. Tripwire comes with policy templates designed especially for PCI DSS use. These templates can be used to evaluate whether the current state of systems are in compliance with PCI requirements. And since it additionally keeps a history of change and configuration test results, Tripwire maintains the information required to continuously sustain a state of compliance.

About Medfusion, Inc.

Medfusion, a Cary, NC-based company offers patient-to-provider communication solutions that enable healthcare providers to offer superior service to their patients while improving office efficiency and generating revenue. Medfusion's powerful web-based solutions virtually transform patient communications with applications for pre-registration, appointment requests and reminders, outbound messaging, lab results delivery, prescription renewals, online bill payment, virtual office visits, and more, including uniquely-branded content-rich web sites. Medfusion is the preferred portal and website provider for the Medical Group Management Association (MGMA) and the American Academy of Family Physicians (AAFP) and was ranked #1 by KLAS in the 2008 Software Category for secure patient portals. For more information, please visit

About Tripwire, Inc.

Tripwire is the leader in data center compliance and infrastructure management solutions, building confidence for IT across both virtual and physical infrastructures. Tripwire Enterprise and vWire software help over 6,500 enterprises worldwide meet their configuration auditing, file integrity monitoring, virtual infrastructure management and change auditing needs for IT operations, security and compliance. Tripwire is headquartered in Portland, Ore. with offices worldwide. Tripwire can be found at,, and @vwire on Twitter.

Contact Information