diff --git a/CHANGELOG.md b/CHANGELOG.md
index e69ff3934039fa81c3584a6aca2f4c474bbc04ae..6526732245f639d5abb206251d105e779c1dd44d 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -71,6 +71,8 @@ Coq 8.11 is no longer supported in this version of Iris.
* Improve notation printing around `WP`, Texan triples, and logically atomic triples.
* Slight change to the `AACC` notation for atomic accessors (which is usually
only printed, not parsed): added a `,` before `ABORT`, for consistency with `COMM`.
+* Add the lemmas `big_sepM_impl_strong` and `big_sepM_impl_dom_subseteq` that
+ generalize the existing `big_sepM_impl` lemma. (by Simon Friis Vindum)
**Changes in `proofmode`:**
diff --git a/iris/bi/big_op.v b/iris/bi/big_op.v
index 4c60f8723bf89a04aae88f393f151fca7239a4d9..9e82d6e39b3e8834cde8440d00bdc368185a6afe 100644
--- a/iris/bi/big_op.v
+++ b/iris/bi/big_op.v
@@ -1501,6 +1501,68 @@ Lemma big_sepM_sep_zip `{Countable K} {A B}
([∗ map] k↦x ∈ m1, Φ1 k x) ∗ ([∗ map] k↦y ∈ m2, Φ2 k y).
Proof. apply big_opM_sep_zip. Qed.
+Lemma big_sepM_impl_strong `{Countable K} {A B}
+ (Φ : K → A → PROP) (Ψ : K → B → PROP) (m1 : gmap K A) (m2 : gmap K B) :
+ ([∗ map] k↦x ∈ m1, Φ k x) -∗
+ □ (∀ (k : K) (y : B),
+ (if m1 !! k is Some x then Φ k x else emp) -∗
+ ⌜m2 !! k = Some y⌠→
+ Ψ k y) -∗
+ ([∗ map] k↦y ∈ m2, Ψ k y) ∗
+ ([∗ map] k↦x ∈ filter (λ '(k, _), m2 !! k = None) m1, Φ k x).
+Proof.
+ apply wand_intro_r.
+ revert m1. induction m2 as [|i y m ? IH] using map_ind=> m1.
+ { rewrite big_sepM_empty left_id sep_elim_l.
+ rewrite map_filter_id //. }
+ rewrite big_sepM_insert; last done.
+ rewrite intuitionistically_sep_dup.
+ rewrite assoc. rewrite (comm _ _ (â–¡ _))%I.
+ rewrite {1}intuitionistically_elim {1}(forall_elim i) {1}(forall_elim y).
+ rewrite lookup_insert pure_True // left_id.
+ destruct (m1 !! i) as [x|] eqn:Hx.
+ - rewrite big_sepM_delete; last done.
+ rewrite assoc assoc wand_elim_l -2!assoc. apply sep_mono_r.
+ assert (filter (λ '(k, _), <[i:=y]> m !! k = None) m1
+ = filter (λ '(k, _), m !! k = None) (delete i m1)) as ->.
+ { apply map_filter_strong_ext_1=> k z.
+ rewrite lookup_insert_None lookup_delete_Some. naive_solver. }
+ rewrite -IH. do 2 f_equiv. f_equiv=> k. f_equiv=> z.
+ apply wand_intro_r. apply impl_intro_l, pure_elim_l=> ?.
+ assert (i ≠k) by congruence.
+ rewrite lookup_insert_ne // pure_True // left_id.
+ rewrite lookup_delete_ne // wand_elim_l //.
+ - rewrite left_id -assoc. apply sep_mono_r.
+ assert (filter (λ '(k, _), <[i:=y]> m !! k = None) m1
+ = filter (λ '(k, _), m !! k = None) m1) as ->.
+ { apply map_filter_strong_ext_1=> k z.
+ rewrite lookup_insert_None. naive_solver. }
+ rewrite -IH. do 2 f_equiv. f_equiv=> k. f_equiv=> z.
+ apply wand_intro_r. apply impl_intro_l, pure_elim_l=> ?.
+ rewrite lookup_insert_ne; last congruence.
+ rewrite pure_True // left_id // wand_elim_l //.
+Qed.
+
+Lemma big_sepM_impl_dom_subseteq `{Countable K} {A B}
+ (Φ : K → A → PROP) (Ψ : K → B → PROP) (m1 : gmap K A) (m2 : gmap K B) :
+ dom (gset _) m2 ⊆ dom _ m1 →
+ ([∗ map] k↦x ∈ m1, Φ k x) -∗
+ □ (∀ (k : K) (x : A) (y : B),
+ ⌜m1 !! k = Some x⌠→ ⌜m2 !! k = Some y⌠→
+ Φ k x -∗ Ψ k y) -∗
+ ([∗ map] k↦y ∈ m2, Ψ k y) ∗
+ ([∗ map] k↦x ∈ filter (λ '(k, _), m2 !! k = None) m1, Φ k x).
+Proof.
+ intros. rewrite big_sepM_impl_strong.
+ apply wand_mono; last done. f_equiv. f_equiv=> k. apply forall_intro=> y.
+ apply wand_intro_r, impl_intro_l, pure_elim_l=> Hlm2.
+ destruct (m1 !! k) as [x|] eqn:Hlm1.
+ - rewrite (forall_elim x) (forall_elim y).
+ do 2 rewrite pure_True // left_id //. apply wand_elim_l.
+ - apply elem_of_dom_2 in Hlm2. apply not_elem_of_dom in Hlm1.
+ set_solver.
+Qed.
+
Section and_map.
Context `{Countable K} {A : Type}.
Implicit Types m : gmap K A.