I think that’s overkill.
I think 2fa is probably good enough and much more user friendly.

Key stored in app, then on signing a pop up app or extension with second factor is secure enough.