A deep dive into a multi-layer file validation system that protects file uploads from malicious and hidden threats.

HaloDoc is a healthcare technology platform that offers telemedicine services, online pharmacy, and health information resources to users in Indonesia. Through its platform, HaloDoc aims to improve access to healthcare services, empower patients to take control of their health, and facilitate collaboration between healthcare providers. Developers can learn from HaloDoc's innovative use of technology to address healthcare challenges, leveraging telemedicine, artificial intelligence, and data analytics to enhance patient care and outcomes.

Halodoc

Halodoc processes over 300k file uploads daily in healthcare workflows and built a multi-layer validation framework to block malicious files. The system uses Apache Tika for content-based MIME detection, Apache PDFBox for PDF structure scanning, Apache Commons CSV for formula injection detection, and Java ZipInputStream for archive inspection. Validation layers include filename checks, content-type detection via magic bytes, resource limit enforcement, and format-specific deep scanning for PDFs, images, CSVs, Office documents, and archives. The framework supports both synchronous and asynchronous upload flows, achieves p95 latency under 13ms via fail-fast ordering and type-aware routing, and includes structured rejection reasons to handle false positives in healthcare edge cases.

Secure File Uploads with Multi-Layer Validation

Security Framework Integration Architecture