KPRD Knowledge Graph Explorer

System Architecture Steps 1 & 2

Steps 3 & 4 Architecture RAG + MCP

MCP & RAG Explained Plain Language

Steps 5 & 6 Architecture Review + Share

Azure Architecture Overview High Level

Azure Architecture Technical Detailed

Azure Resource Provisioning Provisioning

How We Assess Compliance CUI

Assessment Pipeline

STEP 1

Document Submitted

STEP 2

Policy Document Retrieval (MCP Server)

CUI Registry CUI Marking Handbook DOE CUI Guide EAR Summary ITAR Overview Risk Matrix

PASS 1

Policy-Grounded Assessment

AI reads document alongside actual DOE/NETL policy

PASS 2

Adversarial Verification

Second AI review actively looks for misclassifications

PASS 3

Confidence Scoring

If confidence < 0.7 → automatic human review escalation

Structured Result with Citations

Stored to database with full audit trail

How It Works

Assessment Pipeline - Technical Details

Step 1: Policy Document Retrieval

// Retrieve P1 (mandatory) policy documents from MCP server
$cuiDocs = McpDocument::where('priority', 'P1')
    ->whereIn('category', ['cui', 'export-control'])
    ->where('is_uploaded', true)
    ->get();

// Load full text of each policy document into context
foreach ($cuiDocs as $doc) {
    $policyContext[] = $this->extractDocumentContent($doc);
}

Before the AI sees any submitted document, the system loads the full text of every P1 (Priority 1) policy document into the assessment context.

Step 2: Policy-Grounded Assessment (Pass 1)

// Send document + policy context to Claude for assessment
$response = $this->callEnhancedAssessmentApi(
    $context,
    $policyContext,
    $assessmentType
);

The Claude API receives the user's document along with the full text of all P1 policy documents. Every finding must cite a specific section of a specific policy document.

CUI Categories Explicitly Checked:

EXPTExport Controlled

PROPINProprietary Info

CTICritical Technology

ITARArms Regulations

EARExport Admin Regs

PRVCYPrivacy Info

INTELIntelligence

LAWLaw Enforcement

TAXTax Information

Plus 10 additional categories. Full list of 124+ subcategories loaded from CUI Registry (doc 3.1).

Step 3: Adversarial Verification (Pass 2)

// Second pass: actively try to find misclassifications
if ($this->requiresVerification($response)) {
    $response = $this->verifyComplianceFindings(
        $context,
        $policyContext,
        $response
    );
}

A second API call asks the AI to review the first assessment adversarially, looking for missed categories or alternate interpretations.

Step 4: Confidence Scoring & Escalation

// Auto-escalate to human review if confidence is insufficient
$requiresHumanReview = $complianceConfidence < 0.7
    || $compliance['status'] === 'flagged'
    || $compliance['cui']['status'] !== 'none';

if ($requiresHumanReview) {
    $assessment->compliance_status = 'review_required';
    $assessment->requires_human_review = true;
}

If confidence falls below 0.7, the result is automatically flagged for human review. The system will never store a "clear" status without sufficient confidence.

Example Assessment Output

Click to expand JSON example

{
  "cui": {
    "status": "potential",
    "categories_checked": ["EXPT", "PROPIN", "CTI", "PRVCY"],
    "findings": [
      {
        "category": "EXPT",
        "trigger_phrase": "specific alloy composition: Ni-22Cr-14W-2Mo",
        "reference": "3.1 CUI Registry - Section 4.2.1",
        "confidence": 0.87,
        "rationale": "Specific material composition may be export controlled"
      }
    ]
  },
  
  
  "compliance_confidence": 0.85,
  "requires_human_review": false
}

Reference Document Inventory

P1 Always Loaded (Every Assessment)

Doc ID	Name	Role	Status
3.1	CUI Registry	Defines all CUI categories (124+)	Ready
3.2	CUI Marking Handbook	Identification & marking requirements	Ready
3.3	DOE CUI Implementation Guide	DOE-specific CUI interpretation	Ready
2.1	EAR Summary	Export Administration Regulations	Ready
2.2	ITAR Overview	International Traffic in Arms	Ready
3.6	Science & Technology Risk Matrix	Technical content risk classification	Ready

P2 P3 Conditional (When Content Triggers)

Doc ID	Name	Trigger
3.5	PII Handling Guidelines	Names, personal data, or identifiable information

Living Documents

These reference documents are maintained in the MCP server. When DOE or NETL updates a policy (new CUI categories, revised export control guidance), the updated document is uploaded to the MCP server. The assessment system immediately begins using the updated policy — no code changes, no retraining, no redeployment required.

How AI Retrieval Works RAG & Document Tiers

Understanding RAG

Ingestion & Retrieval Pipeline

STEP 1

Document Enters KPRD

STEP 2

Quality Tier Assignment

Scored on 6 criteria (0–13 points)

Publication status Peer review DOI/identifier Completeness Source authority Draft penalty

10+ → Gold 6–9 → Silver 0–5 → Bronze

STEP 3

Chunking

Split into ~512–1,024 token passages with 20% overlap

STEP 4

Embedding & Storage

Each chunk → vector embedding (~1,500 dimensions) + metadata

— At query time —

STEP 5

Semantic Retrieval

Query → embedding → find closest chunks by meaning (Gold boosted)

AI Response

Generated from NETL's data, not general knowledge

Document Quality Tiers

Gold Tier

Highest Confidence

Gold documents represent the highest-confidence content and are prioritized whenever authoritative answers are required.

Examples:

Peer-reviewed articles Published papers DOI documents Federal standards

Silver Tier

Credible / Operational

Silver documents are credible and useful content that may not meet the publication rigor of Gold sources.

Examples:

Internal reports Conference papers Approved drafts White papers

Bronze Tier

Informal / Preliminary

Bronze documents are informal or preliminary material used cautiously by the AI.

Examples:

Meeting notes Email/correspondence Draft papers Raw data

How Tiers Affect Retrieval

Behavior	Gold	Silver	Bronze
Search ranking	Boosted (highest)	Standard weight	Reduced weight
AI response sourcing	Preferred source	Used when Gold unavailable	Used cautiously
Compliance assessments	Primary basis	Supporting context	Not sole basis
High-confidence mode	Included	Excluded	Excluded
Exploratory mode	Included	Included	Included

Automatic Overrides

Regardless of score, certain conditions force a specific tier:

Condition	Forced Tier
Peer-reviewed + DOI + official publisher	Gold (always)
Federal standard or policy document	Gold (always)
Final internal report approved by leadership	Silver (minimum)
Retracted, obsolete, or superseded document	Bronze (always)
Meeting notes, email, or chat logs	Bronze (always)

Tie-Breaker Rules

When a document falls on the boundary between tiers:

Use the lower tier if review evidence is missing
Use the higher tier if an authoritative source is confirmed
Use the lower tier if marked as draft
Escalate to a Subject Matter Expert if ambiguous

Scoring Methodology

Every document is evaluated against 6 objective criteria and assigned a score from 0 to 13. The total score determines the final tier.

Classification Thresholds (max score: 13)

0–5 Bronze

6–9 Silver

10+ Gold

Scoring Criteria

Scoring Examples

Example 1: Peer-Reviewed Journal Article

GOLD

Publication Status	Published journal article	3
Peer Review	External peer reviewed	3
DOI	DOI assigned	2
Completeness	Full report with references	2
Source Authority	Recognized journal	3
Draft Penalty	Final version	0
Total		13

Example 2: Internal Technical Report

SILVER

Publication Status	Internal final report	2
Peer Review	Supervisor review only	1
DOI	Internal report number	1
Completeness	Mostly complete	1
Source Authority	Internal org (NETL)	2
Draft Penalty	Final approved	0
Total		7

Example 3: Meeting Notes

BRONZE

Publication Status	Unpublished	0
Peer Review	None	0
DOI	None	0
Completeness	Fragmentary notes	0
Source Authority	Internal	2
Draft Penalty	Working notes	-2
Total		0

Also forced to Bronze by override: meeting notes → Bronze

Data Architecture

KPRD Azure SQL Database (Single Source of Truth)

artifacts products organizations keywords projects

↕ Linked, not duplicated ↕

Vector Store (Search Index Layer)

Chunk text

paragraph-sized passages

Embedding vector

~1,500 dimensions

Metadata:

document_id, quality_tier, source_org, doc_type, pub_date, program_area, author

↕

MCP Server (AI Access Layer)

Tools: search, query, assess Resources: documents, orgs, products Auth: Sanctum token Audit: every query logged

Metadata Stored Per Chunk

Field	Description	Example
document_id	Links chunk back to KPRD record	doc_4821
quality_tier	Gold / Silver / Bronze	gold
tier_score	Raw deterministic score (0–13)	11
source_org	Authoring organization	NETL
doc_type	Document type classification	journal_article
pub_date	Publication or creation date	2025-08-14
program_area	NETL program alignment	FECM
author	Document author(s)	Smith, J.; Weber, K.

Where Data Lives

KPRD Azure SQL

Single source of truth for all structured data (documents, organizations, products, approvals). Unchanged by RAG.

Vector Store (Azure AI Search)

Search index alongside the database, not a replacement. Supports hybrid search (vector + keyword). If a document is deleted from KPRD, its chunks are deleted from the vector store.

MCP Server

AI access layer. AI clients (Claude, ChatGPT, Cursor) connect through MCP to search and query KPRD data. The AI never touches the database directly. All access enforces authentication, rate limiting, and audit logging.

Retrieval Modes

Mode	Tiers Included	Use Case
High Confidence	Gold only	Compliance checks, export control, formal assessments
Standard	Gold Silver	General research queries, program alignment
Exploratory	Gold Silver Bronze	Broad discovery, trend analysis, gap identification

In all modes, Gold documents receive a ranking boost. The mode determines which tiers are eligible for inclusion.

How the AI Uses Retrieved Content

User submits a query (or system runs automated assessment)
Query converted to an embedding vector
Vector store returns closest-matching chunks, filtered by retrieval mode
Gold chunks boosted in ranking; Bronze chunks weighted lower
Top-ranked chunks (with metadata) passed to AI as context
AI generates response grounded in those specific sources
Response includes source attribution — which documents contributed

The AI cannot reference documents outside of what was retrieved. If only Gold sources are returned, the response is grounded exclusively in highest-confidence material.

MCP Document Inventory 78 Documents

0

ID	Document Name	Priority	Category	Status	Actions

Document Preview

Download

Add New Document

Document Name *

Filename *

Priority *

Category *

Source

Description

Knowledge Graph Nodes

0

Type	Name	Connections

Published journal article / official report	3
Internal final report / conference proceeding	2
Internal memo / presentation	1
Unpublished working file	0

Final approved version	0
Draft marked version	-1
Working notes / meeting notes	-2
Raw data without context	-3
Email / informal correspondence	-4

KPRD Knowledge Graph Explorer

Recent Artifacts

Supervisor Review Queue

Gold Tier

Silver Tier

Bronze Tier

Example 1: Peer-Reviewed Journal Article

Example 2: Internal Technical Report

Example 3: Meeting Notes

External peer reviewed	3
Formal internal technical review	2
Supervisor review only	1
No evidence of review	0

DOI / ISBN / ISSN / official report number	2
Internal controlled identifier	1
None	0

Full structured report with conclusions/references	2
Mostly complete technical content	1
Fragmentary / partial notes	0

Recognized journal / federal agency / national lab	3
Established company / university / internal org	2
Unknown source / individual	0