Andrew W. Appel Eugene Higgins Professor of Computer Science Department of Computer Science Princeton University

Bio & Contact Publications Vita My students

Research Interests: program verification, computer security, programming language semantics, machine-checked proofs, compilers, and election technology.

VST project page		CertiCoq project page		VeriFFI
				Voting machines

Selected articles on voting: (more here and here) Securing the Vote — National Academies report Florida is the Florida of ballot-design mistakes Pilots of risk-limiting election audits in California and Virginia BMDs are not meaningfully auditable New Jersey gets ballot-tracking only half right Did Sean Hannity misquote me? Georgia’s election avoided an even worse nightmare... New Hampshire Election Audit, part 1; and part 2 ES&S Uses Undergraduate Project to Lobby New York Legislature... A PDF File Is Not Paper, So PDF Ballots Cannot Be Verified Five-part series on the Swiss e-voting system:   1 2 3 4 5 Magical thinking about BMD contingency plans The anomaly of cheap complexity Is Internet Voting Secure? The Science and the Policy Battles Why the voting machines failed in Mercer County

Technology Policy

My blog at

Other technology policy work I've done

Previous research projects