If 2FA was done by a "separate" software program that runs on your computer it would be secure and decentralized.


Otherwise, 2FA by phone and confirmation emails both increase account risk. Hackers, email providers, ISPs, and not-nice-governments like North Korea are constantly trying to get into peoples phones and emails.