Is using 2FA in both my email account (although, if I'm not mistaken, 2FA doesn't work for POP3/IMAP accounts) and in, let's say, my bank account a reasonably secure option that address the apparent contradiction of using a public identifier (i.e. email account) for something that should be kept private (part of the information required to access your money, tax information, etc.)?
Do you have email addresses/aliases that you use exclusively as usernames for critical/important online services and not for communicating? Are there "best practices" when it comes to separating the use of email as a communication tool and as personal identifier/username? How do you manage this?
Or, as I said at the beggining, am I overthinking this?
Some services like Outlook mail and Apple mail (for free ones) do not allow you to log in with the alias. This could be considered more secure, I guess.
In contrast, In others (like yahoo and gmx) you can log with any of them, and they are also all clearly "visible" (in the settings).