Sentinel-Strategist Architecture Reduces RAG Security Trade-off

A new architecture called Sentinel-Strategist addresses the security-utility trade-off in retrieval-augmented generation (RAG) systems. Proposed in arXiv:2604.20932, the framework uses a Sentinel to detect anomalous retrieval behavior and a Strategist to selectively deploy defenses based on query context. Experiments show an always-on defense stack reduces contextual recall by over 40%, but Sentinel-Strategist mitigates this cost. The architecture is evaluated across three benchmark datasets, targeting multi-vector attacks like membership inference, data poisoning, and content leakage. This work is relevant for sensitive domains such as healthcare and law where RAG systems rely on private knowledge.