https://github.com/serverless-ca/terraform-aws-ca

Terraform module for serverless certificate authority on AWS
https://github.com/serverless-ca/terraform-aws-ca

aws certificate-authority cryptography serverless terraform

Last synced: about 2 months ago
JSON representation

Terraform module for serverless certificate authority on AWS

• Host: GitHub
• URL: https://github.com/serverless-ca/terraform-aws-ca
• Owner: serverless-ca
• License: other
• Created: 2024-01-25T09:12:31.000Z (about 2 years ago)
• Default Branch: main
• Last Pushed: 2026-02-01T20:59:54.000Z (about 2 months ago)
• Last Synced: 2026-02-02T04:46:14.125Z (about 2 months ago)
• Topics: aws, certificate-authority, cryptography, serverless, terraform
• Language: Python
• Homepage: https://serverlessca.com/
• Size: 32 MB
• Stars: 158
• Watchers: 7
• Forks: 26
• Open Issues: 0
• Metadata Files:
  • Readme: README.md
  • Contributing: CONTRIBUTING.md
  • License: LICENSE.md
  • Codeowners: .github/CODEOWNERS
  • Security: docs/security.md
  • Maintainers: MAINTAINERS.md

Awesome Lists containing this project

README

          
# Terraform module for Certificate Authority on AWS

[![Version](https://img.shields.io/github/v/release/serverless-ca/terraform-aws-ca)](https://github.com/serverless-ca/terraform-aws-ca/releases/tag/v0.1.0)

[![Build](https://img.shields.io/github/actions/workflow/status/serverless-ca/terraform-aws-ca/.github%2Fworkflows%2Fecdsa_default.yml?branch=main)](https://github.com/serverless-ca/terraform-aws-ca/actions/workflows/ecdsa_default.yml)

[![Apache License](https://img.shields.io/badge/License-Apache%20v2-green.svg)](https://github.com/serverless-ca/terraform-aws-ca/blob/main/LICENSE.md)

* Serverless Certificate Authority typically $50 per year

* [Equivalent cost using AWS Private CA around $10,000 per year](https://serverlessca.com/faq/#how-did-you-work-out-the-cost-comparison-with-aws-private-ca)

* 100% serverless

* CA private keys stored in [FIPS 140-2 level 3 certified hardware](https://aws.amazon.com/about-aws/whats-new/2023/05/aws-kms-hsm-fips-security-level-3)

* Wide range of [configuration options](https://serverlessca.com/options/)

* Published as a public [Terraform registry module](https://registry.terraform.io/modules/serverless-ca/ca/aws/latest)



> 📄 Detailed documentation is on our [Docs](https://serverlessca.com) site. If testing the Serverless CA for the first time, use the [Getting Started](https://serverlessca.com/getting-started/) guide.

> 📢 We welcome contributions! See the [Contributing Guide](https://github.com/serverless-ca/terraform-aws-ca/blob/main/CONTRIBUTING.md) for how to get started.

## Open Cloud Security Conference - talk and demo



Talk and demo on [YouTube](https://youtu.be/p2Cb5PSXWSE)

## SANS CloudSecNext - talk and demo



Talk and demo on [YouTube](https://youtu.be/JJD2GrZxLq4)

## Blog posts

> 📖 [Open-source cloud Certificate Authority](https://medium.com/@paulschwarzenberger/open-source-cloud-certificate-authority-75609439dfe7)

> 📖 [AWS Application Load Balancer mTLS with open-source cloud CA](https://medium.com/@paulschwarzenberger/aws-application-load-balancer-mtls-with-open-source-cloud-ca-277cb40d60c7)

> 📖 [Amazon CloudFront mTLS with open-source serverless CA](https://medium.com/@paulschwarzenberger/amazon-cloudfront-mtls-with-open-source-serverless-ca-f49ce2bc9874)

> 📖 [AWS IAM Roles Anywhere with open-source private CA](https://medium.com/@paulschwarzenberger/aws-iam-roles-anywhere-with-open-source-private-ca-6c0ec5758b2b)

> 📖 [API Gateway mTLS with open-source cloud CA](https://medium.com/@paulschwarzenberger/api-gateway-mtls-with-open-source-cloud-ca-3362438445de)

> 📖 [Revoking access to IAM Roles Anywhere using open-source private CA](https://medium.com/@paulschwarzenberger/revoking-access-to-iam-roles-anywhere-using-open-source-private-ca-47667cc92299)

## Sponsors

This project is supported by [Q-Solution](https://www.q-solution.co.uk)