Trusted Third Party is a security hole, when your multisig keys are generated by a app you don't control, a server you don't control and a hardware device you can't reproduce you are not in control.