The 256-bit recipient address is split into a vector of 32 bytes and each byte can be treated as a coefficient of a
All in all, based on the following facts:
- once the challenges
$c_0$/ $c_1$and corresponding evaluations are known, the commitment of $Q(x)$can be calculated.
- all possible accounts are exposed.
The puzzle can be solved by scanning all possible accounts to find out the correct account with specified commitment.