Two factor authentication increases security by requiring both the known passphrase and a temporal challenge response. Combined, this increases the authentication security significantly.
However, the current implementation collects authentication information sequentially instead of concurrently.
This scheme reduces the overall strength by allowing attackers to attempt to compromise the passphrase and the temporal challenge as separate steps - as the passphrase component reveals if it is matched prior to moving to the second factor.