jcardena.com Blog RAG that survives a hard question
145 posts
EN ES

RAG that survives a hard question

AI

Production-ready RAG isn't about retrieval; it's about managing failure. Learn the architecture for building robust RAG systems that survive hard questions.

My first Retrieval-Augmented Generation prototype felt like magic. I fed it a few hundred pages of our team’s private API documentation, asked a question it was designed to answer, and a perfect, cited response appeared. The team was impressed. Then, an engineer asked a related question whose answer wasn't in the documents. The system didn't hesitate. It grabbed the most syntactically similar, yet semantically useless, text chunks and hallucinated a confident, plausible, and catastrophically wrong answer. The magic evaporated.

That moment reveals the critical flaw in most simple RAG architectures. They are designed for success, but in production, most of your engineering effort is spent managing failure. A robust RAG system isn't about finding the right document; it's about building a pipeline that gracefully handles ambiguity, irrelevance, and the vast space of things it doesn’t know.

User QueryCandidateRetrievalRerank and ScoreDecision Gate
The RAG Gauntlet

The Brittleness of the Naive Pipeline

The standard RAG tutorial is a straight line: User Query → Embedding → Vector Search → Stuff into LLM Context → Get Answer. This works for a narrow set of questions where a relevant document is almost guaranteed to exist. It’s a pattern that crumbles the moment a user acts like a real human.

The core problem is that the system lacks a true concept of relevance. A vector database will always return its nearest neighbors, even if those neighbors are conceptually miles away. The LLM, given context, will almost always try to synthesize an answer from it. This combination creates a fantastic generator of confident-sounding nonsense. It's a silent failure mode that erodes user trust, which is the only currency that matters for these systems.

Reranking as a Deterministic Guardrail

The first step away from the naive model is to stop trusting your vector database’s initial output. After retrieving an initial set of candidates—say, the top 20—you need a more sophisticated, computationally expensive step to validate them. This is the job of a reranker.

Unlike vector search, a reranker model is trained specifically to take a query and a list of documents and assign a relevance score to each. It captures more nuanced semantic relationships, and it's incredibly effective at pushing irrelevant chunks to the bottom of the list. Some will argue for fine-tuning the embedding model itself, but I often prefer a decoupled reranker. It acts as an explicit, measurable guardrail in the pipeline without requiring a massive retraining project every time the source data domain shifts.

But the reranker's most important output isn't the re-sorted list. It's the scores themselves. This is your first real signal of quality. In my experience, if the score of the top-ranked document is below a certain threshold—a value you have to tune—it’s a strong indicator that you have garbage. This score allows you to build deterministic logic, moving you away from pure generative hope.

The "I Don't Know" Escape Hatch

Once you have a confidence score, you can implement the single most important feature for building user trust: the "I don't know" response. When the top document score from your reranker falls below your calibrated threshold, the pipeline must stop. It should not pass the low-quality context to the LLM.

Instead, it triggers a completely separate, deterministic response path. The system should reply with something clear and honest: "I could not find a confident answer to that question in the available documents."

This isn't a failure; it's a critical feature. It teaches the user the system's boundaries and proves it isn't just a fluent liar. Implementing this requires a psychological shift for the builder. You have to accept that providing no answer is vastly superior to providing a wrong one. This escape hatch turns a potential catastrophic failure into a predictable and trustworthy interaction.

The Choice: Deterministic Fallbacks or Agentic Complexity

When a retrieval is low-confidence, you face a key architectural decision. The simplest path is a deterministic fallback, like rewriting the query. Frameworks like LlamaIndex offer patterns for what they call Query Transformations, where a secondary LLM call rephrases the user's question and retries the search. It's a contained, predictable, and often effective trick. The cost is latency, but the logic is simple: if the first pass fails, try a second, slightly different pass.

The more fashionable alternative is to build an agentic, self-correcting loop. Instead of a simple retry, the LLM itself evaluates the retrieved context, critiques its relevance, and decides whether to re-query, refine, or give up. The canonical paper on this is Self-RAG, which describes a model that learns to control its own retrieval and generation process. This approach is powerful and academically elegant. In production, however, it can become a complex, hard-to-debug, and expensive loop. My preference leans toward the boring patterns that actually work at 3am. The deterministic fallback is easier to observe, control, and fix.

INPUT & ROUTINGUser QueryIntent RouterRETRIEVAL & FILTERINGVector SearchKeyword SearchRerankerConfidence ScorerGENERATION & LOGICLLM GeneratorDeterministicLogicFallback HandlersSERVINGGrounded AnswerHonest RejectionClarificationPrompt
Architecture of a Resilient RAG System

Building for Production Reality

A RAG system that survives a hard question is one designed with failure in mind. The architecture isn't a straight line but a series of gates and decision points, where the goal is to fail gracefully and predictably. It’s about wrapping a probabilistic core in a deterministic shell.

What this means in practice:

  • Stop trusting raw retrieval. Your initial documents are candidates, not gospel. Implement a reranking step as a mandatory, explicit quality gate.
  • Make confidence scores central. The relevance score is your most critical signal. Use it to drive deterministic logic and establish a quality threshold below which results are considered unusable.
  • Build an explicit "I don't know" path. This is your most valuable feature for user trust. Answering "I can't answer that" from a specific knowledge base is the mark of a well-architected system.
  • Be deliberate about fallbacks. Choose between simple, deterministic retries and complex agentic loops with your eyes open. Acknowledge the trade-off between power and operational sanity.

The magic of these systems isn't their ability to always have the right answer. It's their ability to know, reliably, when they don't.

JC
Juan Cardena
Enterprise Architect, Data & AI

Enterprise architect with 25 years across web, software, data, and AI. MIT CDAO ’25. Writing on agentic AI in production.