Depending on how deep you want to go, you may also want to troll the internet for white papers by SchlumbergerSema (now AtosOrigin - UKPA biometric passport implementation) and also PKI/encryption.
This throws up some interesting developers blogs and forums (including contributions from people from AtosOrigin).
Start at http://blog.gmane.org/gmane.ietf.x509/day=20050511
this is a short chat about security limitations and PKI problems between vendors and suppliers and it includes one of my favourite quotes:
"last week (I) went through an argument with a vendor who.....weren't going to change their code, and anyone who didn't like it could bugger off"
Biometrics? No thanks...