A company is developing a web application that will be accessed by customers globally. To ensure data security and compliance, they need to implement encryption for data in transit and enforce strict access policies for encryption keys. Which combination of AWS services should they use? | AWS Certified Solutions Architect - Associate Quiz