Open Data Infrastructure
AI-Ready Context Source Revocation Policies
How context systems should revoke sources when authority changes, consent expires, quality fails, or policy removes a document.
Bad context does not become safe because it has already been indexed.
Revocation is part of context freshness
AI-ready context systems usually spend more time on ingestion than removal. That is understandable. Retrieval systems feel valuable when they add sources. The harder control is taking sources away when authority changes, consent expires, quality fails, or policy says the source should no longer be used.
Source revocation is not the same as deleting a document from storage. A context platform may have chunks, embeddings, caches, summaries, citations, graph edges, and evaluation records derived from the source. Revocation has to reach the whole context path.
Core idea: Context revocation should remove source authority from retrieval, derived context, and answer evidence together.
Policy needs a removal path
The NIST AI RMF frames AI risk management as an ongoing practice, not a one-time review. DataHub documentation and OpenLineage documentation show why metadata and lineage matter when systems need to trace data use.
For ODI, revocation evidence should answer a practical question. When a source lost authority, which retrieval objects, derived summaries, graph relationships, cached answers, and tools stopped using it? If the platform cannot answer that, the context layer is making promises the data layer cannot defend.
Patterns that work
- Assign a revocation reason such as authority change, consent expiry, quality failure, or policy removal.
- Track derived context artifacts back to source IDs and version IDs.
- Remove revoked sources from retrieval, ranking, summaries, caches, and graph traversals.
- Keep revocation evidence visible to data owners and AI incident reviewers.
- Test whether revoked sources still appear in answers or citations.
For adjacent ODI context, read AI-ready context redaction policies, context graph source authority ranking, and context graph retrieval governance.
What breaks first
- A document is deleted from the source system but remains in the vector index.
- Derived summaries continue to influence answers after the original source was revoked.
- Revocation logs name a document but not the chunks, embeddings, or graph edges derived from it.
- Users receive an answer with a citation to a source that no longer has authority.
Questions to ask
- Which source changes trigger revocation?
- Can the context system find every derived artifact from a revoked source?
- How quickly does revocation propagate to retrieval and cached answers?
- Can an answer review prove that revoked context was not used?
Sources to start with
These primary sources anchor the technical claims in this guide.
Context is only trusted while its sources still have the right to speak.