The Application Specific Password Token is a static password, that can be bound to certain services. This static password then can only be used to authenticate at this service.
The server will create the static password.