Then cookies should be broken until the website requests permission from the browser to use cookies, and the browser itself should be the one responsible for displaying the simple "accept all” and "reject all" interface.

An anology would be like how an iOS app cannot see your physical GPS location without first being granted permission by the user. Cookies need to be access restricted in a similar fashion.