Isn't openssl handled by your php.ini file? I'm curious to find out from bases is your security department stating that machforms "runs" version 1.0.1.
To my knowledge all that is handled server side. The only scenario that I could think of is if machforms "allows" for openssl version ....
Even then that would still be server side.