diff --git a/LayoutTests/http/tests/identity/allow-attribute.https-expected.txt b/LayoutTests/http/tests/identity/allow-attribute.https-expected.txt
new file mode 100644
index 0000000000000..29967b1b6e95b
--- /dev/null
+++ b/LayoutTests/http/tests/identity/allow-attribute.https-expected.txt
@@ -0,0 +1,13 @@
+PASS <iframe src="https://127.0.0.1:8443/identity/resources/iframe.html" data-is-allowed="true"></iframe> is allowed to call get()
+PASS <iframe src="https://localhost:8443/identity/resources/iframe.html" data-is-allowed="false"></iframe> is not allowed to call get()
+PASS <iframe allow="digital-credentials-get" src="https://127.0.0.1:8443/identity/resources/iframe.html" data-is-allowed="true"></iframe> is allowed to call get()
+PASS <iframe allow="digital-credentials-get" src="https://localhost:8443/identity/resources/iframe.html" data-is-allowed="true"></iframe> is allowed to call get()
+PASS <iframe allow="digital-credentials-get *" src="https://localhost:8443/identity/resources/iframe.html" data-is-allowed="true"></iframe> is allowed to call get()
+PASS <iframe allow="digital-credentials-get *" src="https://127.0.0.1:8443/identity/resources/iframe.html" data-is-allowed="true"></iframe> is allowed to call get()
+PASS <iframe allow="digital-credentials-get 'none'" src="https://localhost:8443/identity/resources/iframe.html" data-is-allowed="false"></iframe> is not allowed to call get()
+PASS <iframe allow="digital-credentials-get 'none'" src="https://127.0.0.1:8443/identity/resources/iframe.html" data-is-allowed="false"></iframe> is not allowed to call get()
+PASS <iframe allow="digital-credentials-get 'self'" src="https://localhost:8443/identity/resources/iframe.html" data-is-allowed="false"></iframe> is not allowed to call get()
+PASS <iframe allow="digital-credentials-get 'self'" src="https://127.0.0.1:8443/identity/resources/iframe.html" data-is-allowed="true"></iframe> is allowed to call get()
+PASS <iframe allow="digital-credentials-get https://localhost:8443" src="https://localhost:8443/identity/resources/iframe.html" data-is-allowed="true"></iframe> is allowed to call get()
+PASS <iframe allow="digital-credentials-get https://localhost:8443" src="https://127.0.0.1:8443/identity/resources/iframe.html" data-is-allowed="false"></iframe> is not allowed to call get()
+
diff --git a/LayoutTests/http/tests/identity/allow-attribute.https.html b/LayoutTests/http/tests/identity/allow-attribute.https.html
new file mode 100644
index 0000000000000..183d6b6769915
--- /dev/null
+++ b/LayoutTests/http/tests/identity/allow-attribute.https.html
@@ -0,0 +1,133 @@
+<!DOCTYPE html>
+<html>
+    <head>
+        <title>
+            Test allow attribute with "digital-credentials-get" and
+            CredentialsContainer's .get() method
+        </title>
+        <script src="/resources/js-test-pre.js"></script>
+        <script>
+            testRunner?.dumpAsText();
+            testRunner?.waitUntilDone();
+
+            function waitFor(target, eventName) {
+                return new Promise((resolve) => {
+                    target.addEventListener(eventName, resolve, { once: true });
+                });
+            }
+            const crossorigin = `https://localhost:8443`;
+
+            const iframeDetails = [
+                {
+                    policy: null,
+                    crossOrigin: false,
+                    isAllowed: true,
+                },
+                {
+                    policy: null,
+                    crossOrigin: true,
+                    isAllowed: false,
+                },
+                {
+                    policy: "digital-credentials-get",
+                    crossOrigin: false,
+                    isAllowed: true,
+                },
+                {
+                    policy: "digital-credentials-get",
+                    crossOrigin: true,
+                    isAllowed: true,
+                },
+                {
+                    policy: "digital-credentials-get *",
+                    crossOrigin: true,
+                    isAllowed: true,
+                },
+                {
+                    policy: "digital-credentials-get *",
+                    crossOrigin: false,
+                    isAllowed: true,
+                },
+                {
+                    policy: "digital-credentials-get 'none'",
+                    crossOrigin: true,
+                    isAllowed: false,
+                },
+                {
+                    policy: "digital-credentials-get 'none'",
+                    crossOrigin: false,
+                    isAllowed: false,
+                },
+                {
+                    policy: "digital-credentials-get 'self'",
+                    crossOrigin: true,
+                    isAllowed: false,
+                },
+                {
+                    policy: "digital-credentials-get 'self'",
+                    crossOrigin: false,
+                    isAllowed: true,
+                },
+                {
+                    policy: `digital-credentials-get ${crossorigin}`,
+                    crossOrigin: true,
+                    isAllowed: true,
+                },
+                {
+                    policy: `digital-credentials-get ${crossorigin}`,
+                    crossOrigin: false,
+                    isAllowed: false,
+                },
+            ];
+
+            async function loadIframe({ policy, crossOrigin, isAllowed }) {
+                const origin = crossOrigin ? crossorigin : location.origin;
+                return new Promise((resolve) => {
+                    const iframe = document.createElement("iframe");
+                    if (policy !== null) {
+                        iframe.allow = policy;
+                    }
+
+                    iframe.src = new URL(
+                        "/identity/resources/iframe.html",
+                        origin
+                    ).href;
+                    iframe.onload = () => resolve(iframe);
+                    iframe.dataset.isAllowed = isAllowed;
+                    document.body.appendChild(iframe);
+                });
+            }
+
+            async function runTests() {
+                for (const details of iframeDetails) {
+                    const iframe = await loadIframe(details);
+                    const { isAllowed } = details;
+                    const action = "call get()";
+                    iframe.contentWindow.postMessage({ action }, "*");
+                    const {
+                        data: { exceptionMessage, exceptionName, result },
+                    } = await waitFor(window, "message");
+                    switch (true) {
+                        case isAllowed && exceptionName === "TypeError":
+                            testPassed(
+                                `${iframe.outerHTML} is allowed to ${action}`
+                            );
+                            break;
+                        case exceptionName === "NotAllowedError" && !isAllowed:
+                            testPassed(
+                                `${iframe.outerHTML} is not allowed to ${action}`
+                            );
+                            break;
+                        default:
+                            testFailed(
+                                `${iframe.outerHTML}. ${exceptionName} ${exceptionMessage} - was allowed? ${isAllowed}`
+                            );
+                    }
+                    iframe.remove();
+                }
+                testRunner.notifyDone();
+            }
+        </script>
+    </head>
+    <body onload="runTests()"></body>
+</html>
diff --git a/LayoutTests/http/tests/identity/resources/iframe.html b/LayoutTests/http/tests/identity/resources/iframe.html
new file mode 100644
index 0000000000000..398f9ac4e7603
--- /dev/null
+++ b/LayoutTests/http/tests/identity/resources/iframe.html
@@ -0,0 +1,33 @@
+<!DOCTYPE html>
+<meta charset="utf-8" />
+<meta viewport="width=device-width, initial-scale=1.0" />
+<h1>Digital Credentials API</h1>
+<script>
+    window.addEventListener("message", async (event) => {
+        const { action } = event.data;
+        let result = null;
+        let exceptionMessage = "";
+        let exceptionName = "";
+        try {
+            switch (action) {
+                case "call get()":
+                    // Resutls in TypeError
+                    await navigator.identity.get({
+                        digital: { providers: [] },
+                    });
+                    break;
+                default:
+                    throw new Error(`Unknown action: ${action}`);
+            }
+        } catch (e) {
+            exceptionMessage = e.message;
+            exceptionName = e.name;
+            result = "exception";
+        } finally {
+            event.source.postMessage(
+                { action, exceptionMessage, exceptionName },
+                event.origin
+            );
+        }
+    });
+</script>
diff --git a/LayoutTests/imported/w3c/web-platform-tests/digital-credentials/default-permissions-policy.https.sub-expected.txt b/LayoutTests/imported/w3c/web-platform-tests/digital-credentials/default-permissions-policy.https.sub-expected.txt
new file mode 100644
index 0000000000000..4eb103f9c0c3f
--- /dev/null
+++ b/LayoutTests/imported/w3c/web-platform-tests/digital-credentials/default-permissions-policy.https.sub-expected.txt
@@ -0,0 +1,3 @@
+
+PASS Permissions-Policy is by default 'self'.
+
diff --git a/LayoutTests/imported/w3c/web-platform-tests/digital-credentials/default-permissions-policy.https.sub.html b/LayoutTests/imported/w3c/web-platform-tests/digital-credentials/default-permissions-policy.https.sub.html
new file mode 100644
index 0000000000000..34a40bdcfe746
--- /dev/null
+++ b/LayoutTests/imported/w3c/web-platform-tests/digital-credentials/default-permissions-policy.https.sub.html
@@ -0,0 +1,42 @@
+<!DOCTYPE html>
+<meta charset="utf-8" />
+<script src="/resources/testharness.js"></script>
+<script src="/resources/testharnessreport.js"></script>
+<script src="/resources/testdriver.js"></script>
+<script src="/resources/testdriver-vendor.js"></script>
+<script src="/permissions-policy/resources/permissions-policy.js"></script>
+<script src="/common/get-host-info.sub.js"></script>
+<body></body>
+<script>
+    "use strict";
+    const { HTTPS_REMOTE_ORIGIN } = get_host_info();
+    const same_origin_src =
+        "/permissions-policy/resources/digital-credentials-get.html";
+    const cross_origin_src = new URL(same_origin_src, HTTPS_REMOTE_ORIGIN).href;
+
+    promise_test(async (test) => {
+        await test_driver.bless("use activation");
+        await promise_rejects_js(
+            test,
+            TypeError,
+            navigator.identity.get({ digital: { providers: [] } })
+        );
+
+        await test_feature_availability({
+            feature_description: "Digital Credential API",
+            test,
+            src: same_origin_src,
+            expect_feature_available: expect_feature_available_default,
+            is_promise_test: true,
+        });
+
+        await test_feature_availability({
+            feature_description: "Digital Credential API",
+            test,
+            src: cross_origin_src,
+            expect_feature_available: expect_feature_unavailable_default,
+            feature_name: "digital-credentials-get",
+            is_promise_test: true,
+        });
+    }, "Permissions-Policy is by default 'self'.");
+</script>
diff --git a/LayoutTests/imported/w3c/web-platform-tests/digital-credentials/disabled-by-permissions-policy.https.sub-expected.txt b/LayoutTests/imported/w3c/web-platform-tests/digital-credentials/disabled-by-permissions-policy.https.sub-expected.txt
new file mode 100644
index 0000000000000..00b1a0529ecd6
--- /dev/null
+++ b/LayoutTests/imported/w3c/web-platform-tests/digital-credentials/disabled-by-permissions-policy.https.sub-expected.txt
@@ -0,0 +1,6 @@
+
+
+FAIL Permissions-Policy header digital-credentials-get=() disallows the top-level document. promise_rejects_dom: function "function() { throw e }" threw object "TypeError: At least one provider must be specified." that is not a DOMException NotAllowedError: property "code" is equal to undefined, expected 0
+FAIL Permissions-Policy header digital-credentials-get=() disallows same-origin iframes. assert_false: Digital Credential API expected false got true
+PASS Overridden in cross-origin iframes.
+
diff --git a/LayoutTests/imported/w3c/web-platform-tests/digital-credentials/disabled-by-permissions-policy.https.sub.html b/LayoutTests/imported/w3c/web-platform-tests/digital-credentials/disabled-by-permissions-policy.https.sub.html
new file mode 100644
index 0000000000000..3c0e7b0242196
--- /dev/null
+++ b/LayoutTests/imported/w3c/web-platform-tests/digital-credentials/disabled-by-permissions-policy.https.sub.html
@@ -0,0 +1,46 @@
+<!DOCTYPE html>
+<meta charset="utf-8" />
+<script src="/resources/testharness.js"></script>
+<script src="/resources/testharnessreport.js"></script>
+<script src="/resources/testdriver.js"></script>
+<script src="/resources/testdriver-vendor.js"></script>
+<script src="/permissions-policy/resources/permissions-policy.js"></script>
+<script src="/common/get-host-info.sub.js"></script>
+<body></body>
+<script>
+    "use strict";
+    const { HTTPS_REMOTE_ORIGIN } = get_host_info();
+    const same_origin_src =
+        "/permissions-policy/resources/digital-credentials-get.html";
+    const cross_origin_src = new URL(same_origin_src, HTTPS_REMOTE_ORIGIN).href;
+
+    promise_test(async (test) => {
+        await test_driver.bless("use activation");
+        await promise_rejects_dom(
+            test,
+            "NotAllowedError",
+            navigator.identity.get({ digital: { providers: [] } })
+        );
+    }, "Permissions-Policy header digital-credentials-get=() disallows the top-level document.");
+
+    promise_test(async (test) => {
+        await test_feature_availability({
+            feature_description: "Digital Credential API",
+            test,
+            src: same_origin_src,
+            expect_feature_available: expect_feature_unavailable_default,
+            is_promise_test: true,
+        });
+    }, "Permissions-Policy header digital-credentials-get=() disallows same-origin iframes.");
+
+    promise_test(async (test) => {
+        await test_feature_availability({
+            feature_description: "Digital Credential API",
+            test,
+            src: cross_origin_src,
+            expect_feature_available: expect_feature_available_default,
+            feature_name: "digital-credentials-get",
+            is_promise_test: true,
+        });
+    }, "Overridden in cross-origin iframes.");
+</script>
diff --git a/LayoutTests/imported/w3c/web-platform-tests/digital-credentials/disabled-by-permissions-policy.https.sub.html.headers b/LayoutTests/imported/w3c/web-platform-tests/digital-credentials/disabled-by-permissions-policy.https.sub.html.headers
new file mode 100644
index 0000000000000..02a76b7c3f289
--- /dev/null
+++ b/LayoutTests/imported/w3c/web-platform-tests/digital-credentials/disabled-by-permissions-policy.https.sub.html.headers
@@ -0,0 +1 @@
+Permissions-Policy: digital-credentials-get=()
diff --git a/LayoutTests/imported/w3c/web-platform-tests/digital-credentials/enabled-on-self-origin-by-permissions-policy.https.sub-expected.txt b/LayoutTests/imported/w3c/web-platform-tests/digital-credentials/enabled-on-self-origin-by-permissions-policy.https.sub-expected.txt
new file mode 100644
index 0000000000000..bcf510af6b98c
--- /dev/null
+++ b/LayoutTests/imported/w3c/web-platform-tests/digital-credentials/enabled-on-self-origin-by-permissions-policy.https.sub-expected.txt
@@ -0,0 +1,6 @@
+
+PASS Permissions-Policy header digital-credentials-get=(self) allows the top-level document.
+PASS Permissions-Policy header digital-credentials-get=(self) allows same-origin iframes.
+PASS Permissions-Policy header digital-credentials-get=(self) disallows cross-origin iframes.
+PASS Permissions-Policy header digital-credentials-get=(self) get overridden by allow attribute.
+
diff --git a/LayoutTests/imported/w3c/web-platform-tests/digital-credentials/enabled-on-self-origin-by-permissions-policy.https.sub.html b/LayoutTests/imported/w3c/web-platform-tests/digital-credentials/enabled-on-self-origin-by-permissions-policy.https.sub.html
new file mode 100644
index 0000000000000..a600be222aef6
--- /dev/null
+++ b/LayoutTests/imported/w3c/web-platform-tests/digital-credentials/enabled-on-self-origin-by-permissions-policy.https.sub.html
@@ -0,0 +1,56 @@
+<!DOCTYPE html>
+<meta charset="utf-8" />
+<script src="/resources/testharness.js"></script>
+<script src="/resources/testharnessreport.js"></script>
+<script src="/resources/testdriver.js"></script>
+<script src="/resources/testdriver-vendor.js"></script>
+<script src="/permissions-policy/resources/permissions-policy.js"></script>
+<script src="/common/get-host-info.sub.js"></script>
+<body></body>
+<script>
+    "use strict";
+    const { HTTPS_REMOTE_ORIGIN } = get_host_info();
+    const same_origin_src =
+        "/permissions-policy/resources/digital-credentials-get.html";
+    const cross_origin_src = new URL(same_origin_src, HTTPS_REMOTE_ORIGIN).href;
+
+    promise_test(async (test) => {
+        await test_driver.bless("use activation");
+        await promise_rejects_js(
+            test,
+            TypeError,
+            navigator.identity.get({ digital: { providers: [] } })
+        );
+    }, "Permissions-Policy header digital-credentials-get=(self) allows the top-level document.");
+
+    promise_test(async (test) => {
+        await test_feature_availability({
+            feature_description: "Digital Credential API",
+            test,
+            src: same_origin_src,
+            expect_feature_available: expect_feature_available_default,
+            is_promise_test: true,
+        });
+    }, "Permissions-Policy header digital-credentials-get=(self) allows same-origin iframes.");
+
+    promise_test(async (test) => {
+        await test_feature_availability({
+            feature_description: "Digital Credential API",
+            test,
+            src: cross_origin_src,
+            expect_feature_available: expect_feature_unavailable_default,
+            is_promise_test: true,
+        });
+    }, "Permissions-Policy header digital-credentials-get=(self) disallows cross-origin iframes.");
+
+    promise_test(async (test) => {
+        await test_feature_availability({
+            feature_description: "Digital Credential API",
+            test,
+            src: cross_origin_src,
+            expect_feature_available: expect_feature_available_default,
+            feature_name: "digital-credentials-get",
+            is_promise_test: true,
+        });
+    }, "Permissions-Policy header digital-credentials-get=(self) get overridden by allow attribute.");
+</script>
diff --git a/LayoutTests/imported/w3c/web-platform-tests/digital-credentials/enabled-on-self-origin-by-permissions-policy.https.sub.html.headers b/LayoutTests/imported/w3c/web-platform-tests/digital-credentials/enabled-on-self-origin-by-permissions-policy.https.sub.html.headers
new file mode 100644
index 0000000000000..1207d9e29a111
--- /dev/null
+++ b/LayoutTests/imported/w3c/web-platform-tests/digital-credentials/enabled-on-self-origin-by-permissions-policy.https.sub.html.headers
@@ -0,0 +1 @@
+Permissions-Policy: digital-credentials-get=(self)
diff --git a/LayoutTests/imported/w3c/web-platform-tests/permissions-policy/resources/digital-credentials-get.html b/LayoutTests/imported/w3c/web-platform-tests/permissions-policy/resources/digital-credentials-get.html
new file mode 100644
index 0000000000000..90413c247b10f
--- /dev/null
+++ b/LayoutTests/imported/w3c/web-platform-tests/permissions-policy/resources/digital-credentials-get.html
@@ -0,0 +1,31 @@
+<!DOCTYPE html>
+<meta charset="utf-8" />
+<script src="/resources/testdriver.js"></script>
+<script src="/resources/testdriver-vendor.js"></script>
+<body></body>
+<script>
+    const type = "availability-result";
+    async function notify() {
+        await test_driver.bless("use activation", null, window);
+        let enabled = undefined;
+        try {
+            await navigator.identity.get({ digital: { providers: [] } });
+        } catch (e) {
+            switch (e.name) {
+                case "NotAllowedError":
+                    enabled = false;
+                    break;
+                case "TypeError":
+                    enabled = true;
+                    break;
+                default:
+                    throw e;
+            }
+        } finally {
+            window.parent.postMessage({ type, enabled }, "*");
+        }
+    }
+</script>
+<body onload="notify()">
+    <h1>Digital Credentials iframe</h1>
+</body>
diff --git a/LayoutTests/platform/glib/TestExpectations b/LayoutTests/platform/glib/TestExpectations
index bf408c8e9b4f2..05d176746d470 100644
--- a/LayoutTests/platform/glib/TestExpectations
+++ b/LayoutTests/platform/glib/TestExpectations
@@ -2771,6 +2771,7 @@ imported/w3c/web-platform-tests/credential-management/ [ Skip ]
 
 # Digital Crendentials API
 http/wpt/identity/ [ Skip ]
+http/tests/identity/ [ Skip ]
 imported/w3c/web-platform-tests/digital-credentials/ [ Skip ]
 
 # WebGL2
diff --git a/LayoutTests/platform/mac-site-isolation/TestExpectations b/LayoutTests/platform/mac-site-isolation/TestExpectations
index 44577274a23d9..2ae2f6e77f962 100644
--- a/LayoutTests/platform/mac-site-isolation/TestExpectations
+++ b/LayoutTests/platform/mac-site-isolation/TestExpectations
@@ -5195,6 +5195,7 @@ http/wpt/html/semantics/scripting-1/the-script-element/module/module-meta-url-re
 http/wpt/html/semantics/scripting-1/the-script-element/module/module-meta-url-with-fragment.html [ Skip ]
 http/wpt/html/semantics/text-level-semantics/the-a-element/a-download-click-404.html [ Skip ]
 http/wpt/identity/identitycredentialscontainer-create-basics.https.html [ Skip ]
+http/tests/identity/allow-attribute.https.html [ Skip ]
 http/wpt/identity/identitycredentialscontainer-get-basics.https.html [ Skip ]
 http/wpt/identity/identitycredentialscontainer-store-basics.https.html [ Skip ]
 http/wpt/identity/idl.https.html [ Skip ]
diff --git a/LayoutTests/platform/mac-wk1/TestExpectations b/LayoutTests/platform/mac-wk1/TestExpectations
index 5ef95ed20b5a4..710b97aa65aab 100644
--- a/LayoutTests/platform/mac-wk1/TestExpectations
+++ b/LayoutTests/platform/mac-wk1/TestExpectations
@@ -1827,6 +1827,7 @@ imported/w3c/web-platform-tests/credential-management/ [ Skip ]
 
 # Skip Digital Credentials API
 http/wpt/identity/ [ Skip ]
+http/tests/identity/ [ Skip ]
 imported/w3c/web-platform-tests/digital-credentials/ [ Skip ]
 
 webkit.org/b/182554 transitions/transition-display-property.html [ Pass ImageOnlyFailure ]
diff --git a/Source/WebCore/Modules/credentialmanagement/CredentialsContainer.h b/Source/WebCore/Modules/credentialmanagement/CredentialsContainer.h
index 7b4d6fefcd43a..1320ede2d1456 100644
--- a/Source/WebCore/Modules/credentialmanagement/CredentialsContainer.h
+++ b/Source/WebCore/Modules/credentialmanagement/CredentialsContainer.h
@@ -71,6 +71,7 @@ class CredentialsContainer : public RefCounted<CredentialsContainer> {
 protected:
     template<typename Options>
     bool performCommonChecks(const Options&, CredentialPromise&);
+    const Document* document() const { return m_document.get(); }
 };
 
 } // namespace WebCore
diff --git a/Source/WebCore/Modules/identity/IdentityCredentialsContainer.cpp b/Source/WebCore/Modules/identity/IdentityCredentialsContainer.cpp
index c54ba6b841abb..271cd3b0d4182 100644
--- a/Source/WebCore/Modules/identity/IdentityCredentialsContainer.cpp
+++ b/Source/WebCore/Modules/identity/IdentityCredentialsContainer.cpp
@@ -48,6 +48,12 @@ void IdentityCredentialsContainer::get(CredentialRequestOptions&& options, Crede
     if (!performCommonChecks(options, promise))
         return;
 
+    RefPtr document = this->document();
+    if (!PermissionsPolicy::isFeatureEnabled(PermissionsPolicy::Feature::DigitalCredentialsGetRule, *document, PermissionsPolicy::ShouldReportViolation::No)) {
+        promise.reject(Exception { ExceptionCode::NotAllowedError, "Third-party iframes are not allowed to call .get() unless explicitly allowed via Permissions Policy (digital-credentials-get)"_s });
+        return;
+    }
+
     if (!options.digital) {
         promise.reject(Exception { ExceptionCode::NotSupportedError, "Only digital member is supported."_s });
         return;
diff --git a/Source/WebCore/html/PermissionsPolicy.cpp b/Source/WebCore/html/PermissionsPolicy.cpp
index bf28929bbb422..a153088900d48 100644
--- a/Source/WebCore/html/PermissionsPolicy.cpp
+++ b/Source/WebCore/html/PermissionsPolicy.cpp
@@ -77,6 +77,8 @@ static ASCIILiteral toFeatureNameForLogging(PermissionsPolicy::Feature feature)
 #if ENABLE(WEB_AUTHN)
     case PermissionsPolicy::Feature::PublickeyCredentialsGetRule:
         return "PublickeyCredentialsGet"_s;
+    case PermissionsPolicy::Feature::DigitalCredentialsGetRule:
+        return "DigitalCredentialsGet"_s;
 #endif
 #if ENABLE(WEBXR)
     case PermissionsPolicy::Feature::XRSpatialTracking:
@@ -117,6 +119,7 @@ static std::pair<PermissionsPolicy::Feature, StringView> readFeatureIdentifier(S
 #endif
 #if ENABLE(WEB_AUTHN)
     constexpr auto publickeyCredentialsGetRuleToken { "publickey-credentials-get"_s };
+    constexpr auto digitalCredentialsGetRuleToken { "digital-credentials-get"_s };
 #endif
 #if ENABLE(WEBXR)
     constexpr auto xrSpatialTrackingToken { "xr-spatial-tracking"_s };
@@ -171,6 +174,9 @@ static std::pair<PermissionsPolicy::Feature, StringView> readFeatureIdentifier(S
     } else if (value.startsWith(publickeyCredentialsGetRuleToken)) {
         feature = PermissionsPolicy::Feature::PublickeyCredentialsGetRule;
         remainingValue = value.substring(publickeyCredentialsGetRuleToken.length());
+    } else if (value.startsWith(digitalCredentialsGetRuleToken)) {
+        feature = PermissionsPolicy::Feature::DigitalCredentialsGetRule;
+        remainingValue = value.substring(digitalCredentialsGetRuleToken.length());
 #endif
 #if ENABLE(WEBXR)
     } else if (value.startsWith(xrSpatialTrackingToken)) {
@@ -213,6 +219,7 @@ static ASCIILiteral defaultAllowlistValue(PermissionsPolicy::Feature feature)
 #endif
 #if ENABLE(WEB_AUTHN)
     case PermissionsPolicy::Feature::PublickeyCredentialsGetRule:
+    case PermissionsPolicy::Feature::DigitalCredentialsGetRule:
 #endif
 #if ENABLE(WEBXR)
     case PermissionsPolicy::Feature::XRSpatialTracking:
diff --git a/Source/WebCore/html/PermissionsPolicy.h b/Source/WebCore/html/PermissionsPolicy.h
index e5c8e0fdbf760..4f8160afa9fdf 100644
--- a/Source/WebCore/html/PermissionsPolicy.h
+++ b/Source/WebCore/html/PermissionsPolicy.h
@@ -62,6 +62,7 @@ class PermissionsPolicy {
 #endif
 #if ENABLE(WEB_AUTHN)
         PublickeyCredentialsGetRule,
+        DigitalCredentialsGetRule,
 #endif
 #if ENABLE(WEBXR)
         XRSpatialTracking,